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I. INTRODUCTION 


A. DEFINITION OF THE PROBLEM 


Management’ s concern Over adequate controls is useless 
if the data processing system designers, EDP auditors and 
their managers, do not have the proper training and control 
techniques to utilize when designing or reviewing the 
controls associated with computer systems. 

No one has ever made a convincing estimate of the total 
cost of intentional and unintentional loss-causing acts 
associated with Electronic Data Processing (EDP) processes, 
but it is clear that the cost is high. Recently, many 
articles in professional journals as well as textbooks on 
EDP controls have been published responding to the urgency 
of protection and prevention of computer failures and 
frauds. Most of these studies focus on the identification 
of potential exposures, understanding of current control 
technology and the elaboration of EDP audit trails. These 
articles also refer to the importance of estimating costs 
and benefits, the integration of different audit processes, 
and the various natures of computer failures and correspond- 
ing protection and prevention measures (Ref. 1 and 21. 
However a more formalized methodology remains to be desired. 

ÁS a consequence of this lack of formalized framework, 
the design of EDP control systems frequently relies on 
subjective estimations of the “EDP controller’ or the 
“evaluator” for performing Cost-Effectiveness Analysis 
(CEA). This approach has two major disadvantages. First, the 
dense and complex inter-relationships between potential 
computer errors and related types of control procedures may 
make difficult, if not impossible, for the EDP auditor to 
capture the totality of the problem. Second, the combined 
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use of control procedures may cause uncontrollable and 
undesirable effects. For example, over-auditing reduces the 
throughput of the computer system due to delays caused by 
redundant control measures, or  under-auditing reduces the 


protection effectiveness due to incomplete control measures. 


B. THE NEED FOR CONTROL AND SECURITY OF COMPUTER SYSTEMS 


The management of an entity is responsible for 
establishing and maintaining adequate controls. The 
establishment and maintenance of a system of controls is a 
significant management obligation. 

A complex on-line data communication-’oriented system 
consists of various combinations of hardware, software, 
facilities, people, and the policies and procedures that 
interrelate these components. The many diverse components 
and potential entry-points into a complex on-line system 
make it possible for a person, with sufficient technical or 
applications knowledge, to enter the system and make 
unauthorized manipulations of data, programs, or operational 
procedures. Furthermore, control procedures for an on-line 
system cut across many lines of responsibility within an 
organization, creating a control problem in itself. 

As the number of more sophisticated computer installa- 
tions increases rapidly, computers are taking on 
increasingly responsible work. The more vital the work of 
the computer, the more important is to protect it from 
failure and catastrophe, and from criminals and people 
who misuse its power. The following are typical cases of 
critical computer implementations (Ref. 31: 

: A large city uses a computer for controlling its 
police operations. All police vehicles and ambulances 
are dispatched by men using terminals that inform them 
of the current emergencies. If the computer 2 vas 
put out of action, many of the operations could not be 


controlled. 


z 747s “5:9 a congested airport are prevented 
from ce iding by a computerized air traffic control 
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system. The air traffic density has been allowed to 
increase to such a level that it could not be handled 
without the computer system. 

: A variety of nuclear weapon systems are under computer 
control. The decision to launch a defensive nuclear 
attack is made by men reacting quickly to information 
from computer systems. 

e Commercial data banks contain trade secrets and other 
information that could be worth many millions of 
dollars to the competitors. 

Functions like these demand for data integrity, security 
and privacy. The data processing function must not loose 
vital data, introduce errors into them and permit unauthori- 


zed persons to read or modify the data. 


C. SCOPE OF TBE THESIS 


À conventional life cycle of a computer audit process 
consists of the following six phases: 
1: İnformation gathering. 
Z 3 Evaluation of current control technique. 
ə. Identification of nev control measures or strategies. 
4, Selection of control strategy. 
ST Implementation. 
6. Ex-post evaluation. 
This thesis concentrates only on the fourth phase, 
the selection of control strategy, attempting to apply the 
Decision Support Systems (DSS) technology into the cost 


effectiveness auditing process. 


D. OBJECTIVE 


The objective of the thesis is to introduce a DSS for 
CEA. This may help EDP auditors and computer center managers 
to design successful EDP control and security systems, and 
monitor the effectiveness of the existing ones. 

The issue of interactiveness seems to be critical in 


this context since the process of controlling EDP systems is 
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expected to be not frequent. The importance of interactive- 
ness is further  accentuated when EDP controllera (face a 
large combination of Controls. Assuming that the DSS 
learning curve of the end-user is low to none, the proposed 


DSS emphasizes on the user friendliness of the system. 


E. CHAPTER OUTLINE 


Chapter 2 gives a summary description of the CEA Model 
that the DSS attempts to apply. The third chapter provides a 
framework addressing user requirements and functions that 
the DSS has to meet. 

The fourth chapter is concerned about the detail design 
of the Dialog Component of the system. The fifth chapter 
discusses the design of the Model Component. The sixth 
chapter describes the design of the Data Component, and the 
seventh chapter focuses on the Database design which is part 
of the Data Component. 

The implementation of the DSS, along with implementation 
problems encountered, is discussed in chapter 8. Chapter 9 
gives an example of the system's operation simulating 
the selection of control strategy process. 

Finally, possible future extensions of the proposed DSS 


and concluding comments are discussed in the last chapter. 
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II. THE CEA MODEL 


The purpose of a cost-effectiveness analysis is to 
determine the most cost effective control strategy to reduce 
or eliminate potential errors and failures. It has been a 
generally accepted view that CEA is best used when it is 
integrated in the whole audit process. Some definitions of 
the basic concepts are necessary to the understanding of 


the CEA Model (Ref. 4]. 


A.  DEFINITIONS OF BASIC CONCEPTS 


1. The Concept of Exposures 


The key element to start a CEA is not control but 
exposure. The concept of exposure is based on the assumption 
that the degree of vulnerability of computer systems may be 
reduced by enforcing EDP control measures, but cannot be 
totally eliminated due to some errors that remain unpredict- 


able or unable to fully corrected. 
2. Costs of Controls 


Costs of EDP controls include all costs associated 
with the design, implementation and use of the controls. 
With experience gained in designing and implementing control 
systems, the costs become easier to be identified and 


quantified. 
3. Benefits of Controls 


The identification and quantification of benefits 
derived from control measures is very difficult. One way to 
look at benefits is to interpret them as a function control 


effectiveness. 
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d. Effectiveness of Controls 


The effectiveness of a control is the extent to 
which this control can reduce or minimize the probability 
that an exposure occurs, reduce the damage if an exposure 
happens, and/or recover quickly from a damage. Therefore 
the reliability or performance of a control can be expressed 
as a percentage of control effectiveness relative to the 


related expoaure. 
5 Interdependencies between Controls 


Often, a control, though primarily aimed at correct- 
ing a specific exposure, may affect one or more other 
exposures. Such interdependencies may dramatically affect 


the effectiveness of an EDP control system. 


B. ASSUMPTIONS 


The model assumes that the following conditions hold: 


: Managers and auditors have limited time and capital 
resources for EDP controls. 


- Each corporate computer system is characterized by 
its specific and unique control structure. 


: Independence between potential failures Or errors 
within a computer system. 


: Each applied control is expected to prevent, correct 
or eliminate one or more potential errors, and/or 
affect others positively or negatively. | 


- Costs for EDP controls are known and quantifiable . 


C. SUMMARY DESCRIPTION OF THE MODEL 


Table 1 lists all the variables involved in the mathema- 
tic formulas of the model. The CEA Model consists of the 
following steps: 


12 Define all Possible Control Sets 


— ma AŞA m eee eS ә. 


A control set is Simply a combination of different 


available EDP controls. If there are n independent controls, 
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TABLE 1 
DEFINITION OF VARIABLES USED BY THE MODEL 


Symbol Description 

m Number of potential errors or exposures 

n Number of individual control activities 

a. Control activity, where 1 = 1 to n 

e, Costs of implementing 2 

S Number of control sets 

гу Control set, where k = 1 to 5 

e Potential error or exposure, where J » 1 to m 
:— Probability that e. occurs 

dı Amount of damage when e, occurs 

1, Expected damage caused by e. 

f. Effectiveness of control aj on exposure e, 
M Expected benefits obtained fron a, 

” Expected benefits obtained from SL 

E Expected loss resulted in using s 

E Costs of implementing 2 

ie. Total cost associated with s 
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the maximum number of control sets is defined as follows: 


n 
JO: "Cn. 1)9')7) 
i=1 

This combinatorial approach provides an exhaustive 
identification of control sets. However, it may lead to a 


huge amount of possible combinations, when n becomes big. 


2. Compute Expected Cost due to EDP Exposures 


Expected losses due to occurrence of EDP exposures 
can be estimated using the weighted probability function, 
the P.E.R.T. method under the Accounting definition, and/or 
the ranking method. 

Under the weighted probability, given an exposure, 
the probability of its occurrence, and the amount of its 
damage, the expected loss is defined as follows: 

1, = Pr(e.? s dj 

Under the P.E.R.T. method, given an exposure and the 
smallest(l11,)5, the most likely (12,) and the largest (13,) 
estimated dollar losses if the exposure occurs, the expected 
loss is defined as follows: 

1, = RE * 12, + вәә / 6 

The Ranking method is based on two types of subject- 
ive rating scales related to the Rank P and the Rank Q. 
Rank P ís the probability of occurrence of computer failures 
and Rank Q is the amount of damage caused by a potential 
exposure. Given P and 0, the expected loss can be computed 


as follows: 


(P+0-3) 
O / 


IÐ 


3. Compute the Value of each Control Activity 


The value of a control activity a. 15 defined as 
the sum of the products between the expected amount of 


damage - and the effectiveness of - on exposure gs 
IR 
v, = 2 (1 tto ә, 


4. Compute the Total Value of each Control Set 


The calculation of the value of each control set 


must take into consideration joint effects of multiple 


control activity on single exposure. For all ә contained 
in 8 : 
k 
n m Tio d >. De = 0, 
ә 00 > “Gİ e f _?))?) iJ pJ 
i=1 3s1 J ið for all p: ар = SL 
1 = 
© hE E Ae 9993 if £.., f 
+ ( (1.*(1- -(1- 222) i s > O, 
isi 3=1 J i=1 ið ` ið PJ 
- for all i#p; 2 = 3n 


Da Compute the Total Expected Loss for each Control Set 


The enforcement of control measures is likely to 
reduce the probability of occurrence of computer failure 
and, consequently, the expected loss. However the reduction 
Of expected loss is effective only on the exposures that are 


affected by controls. The computation of expected losses 


includes joint effects of control activities. Thus, for all 
212056 
X k 
n m it f. > Or = O, 
E (EJE ið P J 
isl1 331 J iJ for all pi 3 CRS 
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X Compute the Cost for each Control Set 


The cost of the control set VL is the sum of the 


costs of the individual control activities in the set: 


n 
с̧у = 0”: ır a. € 5" 


The Cost Benefit Ratio of a control set SL can be 
defined as the gross value of s, (step 4) divided by the 
total cost of the setístep 6): 


BCR = V 5 where k = 1,53 


8. Compute Total Expected Cost for each Control Set 


ep ee ee eee 


The total expected cost for the control set is the 
sum of the total cost of control C. plus the total expected 


loss: 


TC = C * L. where k = 1,5 


9. Select the Optimal Control Set 


The determination of an optimal control set depends 
on the selection criterion adopted by EDP managers or 
auditors. One can either choose the control set that minimi- 
zes the total expected cost(TCk) or the one that maximizes 
the Benefit Cost RatiocBCR). BCR represents the amount of 


benefits obtained per unit of cost of the investment. 


Figure 2.1 represents the whole process of the CEA 


Model. 
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Figure 2.1 The Process of the CEA Model 
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III. THE DSS FRAMEWORK 


The literature on D55 agree upon the emergence of the 
three main components of a DSS: the Dialog Component, the 
Model component and the Data component. The separation of 
these components can result in simplicity of development and 
maintenance (Ref. SJ]. Although these advantages are extreme- 
ly desirable, there are cases where the complexity of the 
model component makes the complete separation ineffective. 

The CEA-DSS falls in that category because the nature of 
the CEA Model requires a fairly complex and restrictive User 
Interface. The Quick-hit development strategy, according to 
which the DSS has been developed, consists of using the 
latest technology to quickly design a low-cost system for 
immediate pay-off [Reí. 6]. 


A. THE ROLES AND FUNCTIONS OF THE CEA-DSS 


From the decision maker point oí view, the user may 
expect CEA-DSS to perform the following functions: 


. Save substantial amount of time to generate the 
numerous alternative control combinations. 


. Support him or her to evaluate the alternatives and 
choose among them the alternative that fits better at 
ə Ситат Situation according to the available 

udget. 


. Provide the capability to monitor EDP control ana 
security systems in terms of Cost-Effectiveness. 


. Provide graphical and tabular analyses to help the 
decision maker select close alternatives. 


From a system analysis viewpoint , CEA-DSS essentially 
performs the roles of data analysis and generation of 
expected costs and benefits of control strategies. Data 


analysis also allows the decision maker to sort the data. 
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B. 


THE SYSTEM RESOURCES 


Decision processes are dependent on variations in 


decision makers, i.e. users, as well as types of problems or 


tasks. Observations on decision makers indicate that: 


Many users have trouble describing a decision-making 
process. They seen, instead, to rely on 
conceptualizations, such as graphs or tables, when 
making or explaining a decision (Ref. 7]. Thus the DSS 
must help the user to conceptualize a problem. 


Users need memory aids (Ref. 8]. These memory aids 
may be physical, such as scratch paper, memos, Or 
reports. The DSS should provide memory aids compatible 
with their needs. Directories, databases, workspaces, 
triggers are some typical memory aids the DSS should 
provide the user. 


Users have different styles, skills and knowledge 
ERef 91. Therefore, if the DƏS is designed to support 
a specific process, it would probably support a 
specific set of styles, skills and knowledge. 


Users expect to exercise control over the DSS. Direct 
control of the DSS allows the DSS to satisfy the 
different styles mentioned above. The user must 
understand what the DSS can do and be able to interpret 
its outputs. 
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IV. THE DIALOG COMPONENT 


The dialog component is the most elegant part of the 
DSS design. There are no absolute rules or algorithms for 
the design process. It is often left upon the intuition of 
the designer to balance user requirements with system 
requirements and provide the optimal dialog component. 
The dialog component B the CEA-DSS consists, at least 
conceptually, Of the following three main units: 
: The user interface. 
. The intermodule linkage. 


. The control. 


A. THE USER INTERFACE 


The user interface unit provides the link between the 
user and the system. Its primary concern is to make the 
system ’user friendly’. Even if a DSS provides extremely 
powerful functions, it may not be used if the user interface 
is unacceptable. 

For the CEA-D55 a full screen frame is the standard 
presentation of the system to the end-user. The user, having 
only one screen format to deal with, gets familiar with the 
System faster. 

The man-machine interaction is carried out through 
menus, questions/answers, messages, input/output forms, 


graphics, printed reports and a help facility. 
1. The Frame 


Figure 4.1 shows the frame of the CEA-DSS. It is 
divided into the following areas: 


. The PROBLEM area. In this area appears the description 
Of the problem currently processed. 
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- The ACTION area. This area informs the user about which 
part of the system is currently accessed. 


* The WORK area. This is the place where the greatest 
part of the dialog is accomplished. All the menus, 
messages, input/output forms and the directory of the 
DSS appear here. 


. The SUBMENU/SELECTION area. In this area appear 
submenus in line format and the user is asked to make a 
selection. This area is also reserved tor 


question/answers and the “preas any key..” prompt, 
reminding the user that the system is waiting for some 
action. 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
ACTION: 


WORK AREA 


SUBMENU/SELECTION AREA Today Is: 4/34/4444 





Figure 4.1 The Frame of the CEA-DSS 


2 The Menus 


The menus of the CEA-DSS are organized in a four 
level tree hierarchy. The root of the tree is the MAIN MENU 
of the aystem. From this menu can be called any menu that 
belongs in the second level. The latter contains has the 
DATABASE MENU, the MODEL MENU, and the SENSITIVITY ANALYSIS 
MENU. The third level consists of the database submenu, the 
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CONTROL STRATEGY MENU, the GRAPHICS MENU and the PRINT 
MENU. Finally, in the fourth level there are the control 
strategy, the graphics and print submenus. Figure 4.2 shows 
the tree hierarchy of the menus. 

One level at a time, upwards or downwards, is. 
allowed for the same branch of the tree. Changes from one 
branch to another reguire the control to be routed up to the 
root of these two branches. Although this isa little 
restrictive for the user, it improves the indermodular 
independence and, Consequently, the overall Control and 
clarity in the svysten. 

All the menus, submenus not included, have their own 
help command which the user may use to get some useful 
information about the area of the DSS he/she is currently 


accessing. Most of the menus are discussed in Chapter 9. 
s. Questions/Anseers 


There are a few questions/answers in the CEA-DSS. 
They are used either in cases where the system must be 
reassured that the user made the correct selection, or for 


single data entries. 


4. Messages 


Messages, almost always, appear at the center of the 
work area accompanied by a ‘beep’ sound. Messages, according 
the reason of their initiation, fall into the following 
three categories: 


s Trigger Messages. These remind the user that certain 
operations mani need to be performed that the system 
cannot accomplish. 


. Informal messages. They inform the user about what 
process is the system performing. The primary concern 
of this category is to cover the gaps in the dialog 
caused by time consuming processes. 


. Error Messages. They are initiated when the user 
supplies the system with incorrect entries. While 
editing exposures or controls, ’beep’ sounds notify the 
user for entry errors. 
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All messages along with the reason that causes their 


initiation are listed in Appendix A. 


ə. Input/output Eorms 


The system needs only three forms for its operation. 
Two of them are input/output forms and one output form. One 


input/output form is dedicated to the Control activities and 


the other one to the Exposures. Both are used by the 
Database Management System for editing purposes. The output 
form is used by the Sensitivity Analysis for presenting 


the most effective or most cost effective Control Strategy. 
Figure 4.3 shows the two input/output forms. Fields 
filled with Xs indicate that any character is valid, while 
9s represent numeric characters only. Notice that the 
control input/output form is a variable one. The number of 
the “Effectiveness on Exposure" fields that appear on the 


form depends on the number of Exposures. 


6. Graphics 


The objective of the graphics part is to help the 
user conceptualize the differences among alternatives over 
the cost range he/she prefers. Graphics can also be used to 
Supply parameters for the operations. For example, a point 
selected on a graph can identity a key value that will be 
used to retrieve detailed information. Representations like 
curves and histograms are the most appropriate for this 


particular application. 
Za Printed Reports 


Although not technically a part of the DSS, printed 
reports are aimed to provide the user with an easy-to-read 
summary of the processed problem. This summary consists of 
the exposure table, the control table and the listing of 
the sets generated by the model. The user may select any of 


these reports or all of them to be printed. 
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PROBLEM: PROBLEMI ACTION: ADD EXPOSURE 


Index:01 Description: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX 









WEIGHTED: Damage:$99993999 Probability:0. 999 


P.E.R.T: Smallest:$99999999 Most Likely:$99999999 Largest :$99999999 


| 
| RANKS: Rank P:9.999 Rank (:9. 999 
Rank P Damage caused by error Rank Q Damage caused by failure 

| 0 virtually impossible Q negligible | 

1 might happen once in 400 years 1 about $10 | 
| 2 might happen once in 40 years é about $100 | 
| 3 might happen once in 4 years 3 about $1,000 | 
| 4 might happen once in 100 days 4 about $10, 000 | 
| 9 Might happen once in 10 days 9 about $100, 000 | 
| 6 might happen once in 1 day 6 about $1,000,000 | 
i 7  wight happen ten times a day 7 over $1,000,000 | 


| IS RECORD CORRECT(Y/N)? : Today 1s: 8/19/1985 


| PROBLEM: PROBLEMI | ACTION: ADD CONTROL | 


| 
I 
| Ingex:01 Description: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX 
| 


Effectiveness cn Exposure 3: 0.933 
Efrectiveness on Exoosure 10: 0,999 
Ffrectiveness on Exposure 11: 0.999 
Effectiveness cn Exposure 12: 0.999 
| 

I 
IS RECORD CORRECT(Y/N)? ; I Togay Is: 8/19/1985 


...——., ............ 


Cost :$99999995 i 
| 
| Effectiveness on Exposure 1: 0,993 Effectiveness on Exposure 13: 9.999 | 
| Effectiveness on Exposure ¢: 0.999 Effectiveness on Exposure 14: 0. 999 
| Effectiveness on Exposure 3: 0,999 Effectiveness con Exposure 15: 0.395 
| Effectiveness on Exposure 4: 0.999 Effectiveness on Exposure ib: 0.999 
| Effectiveness on Exposure 5: 0.993 | 
| Effectiveness on Exposure 6: 0.999 
| Effectiveness on Exposure 7: 0.993 
| Effectiveness on Exposure 8: 0,993 
| 
| | 
i 
| 


| 
| 
| 
| 
| 
1 
| 
| 
t 
| 
! 
| 
i 
Í 
1 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
1 
| 
| 
i 
1 
| 
| 


Ејс̧иге 4.3 Input/output Forms 
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8, Help 


The purpose of the help facility is to provide the 
user with on-line information about the specific area of the 
system he/she is currently accessing. Each help, one for 
each menu, is written in such a level of detail that enables 
its presentation in one full screen frame only. All help 


documents appear in Appendix B. 


B. THE INTERMODULE LINKAGE 


This unit assures the liaisons with the model and the 
data component. Usually, it is maintained by a set GOTO, 
CASE and IF THEN ELSE statements. Its nature and structure 
are highly dependent on the programming language and the 


hardware configuration being used for the CEA-DSS. 


C. THE CONTROL 


On the one hand, as in section 3.B stated, users expect 
to exercise control over the DSS. On the other hand, the 
system has to control its processes to assure an error free 
operation, not affected by incorrect entries and requests. 
The control unit is the part of the dialog component which 
bridges these two requirements. It is the filter between the 
user interface and the intermodule linkage unit. Validation 
of input data and verification of user requests are its 
primary functions. All the error messages are initiated by 
bhias unit. Finally, it can be stated that the control unit 
provides the boundaries within which the user is allowed to 


control the process. 
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V. THE MODEL COMPONENT 


The most important units of the model component are 
the Model Base,the Model Base Management, the Model executi- 
on, the Sensitivity Analysis, the Dialog Interface and the 


Data Interface. 


A. THE MODEL BASE 


The following five routines, required for the CEA Model, 
are the content of the model base for the CEA-DSS. (The 
mathematical definition of these methods was discussed in 


section 2.C). 
1⁄3 The Weighted Method 


This routine computes the expected cost due to EDP 
exposures using the weighted probability function. It 
retrieves the required data, directly from the data base, 
manipulates the data and stores the results in memory for 


subsequent computations. 
2. The P.E.R.T. Method 


It is exactly the same with the Weighted Method 
routine except that it uses the P.E.R.T. method to compute 


the expected cost due to EDP exposures. 
as The Ranking Method 


Similar to the others, it computes the expected cost 


due to EDP exposures using the Ranking Method. 


4. The Effective Control 


The role of this routine 1s twofold: To compute the 


Value of each Control activity and, if possible, to reduce 


32 


the number oí the control activities that will be actually 
used in the generation of the control sets. The routine, 
having the results of one of the tree methods, retrieves, 
directly from the database, data related to the Control 
activities. For each Control, it computes first the value 
and then, it compares that value with the associated cost. 
If the value is greater that the cost, the result is sent to 
a secondary storage for subsequent computations. If the 
value is less or equal to the cost, the Control activity is 


ignored. 
Die The Control Sets 


The output of the Effective Control routine is used 
by the Control Sets to generate the control sets. For each 
control set it computes the steps 4 to 8 described in the 
CEA model. If the Total Value of the set is greater than its 
cost, the set is stored in the database for decision 


analyses support, otherwise it is ignored. 


B. THE MODEL BASE MANAGEMENT 


The role of the Model Base Management is to coordinate 
the model base and the data analysis functions. Since the 
CEA-DSS is aimed to support only the model described in 
Chapter II, the Model Base Management does not provide for 
on-line modeling or model update and restructure. 

Its most important function 1s to enable the user to 
utilize the model base fully for decision support and to 
perform analysis of the results. This function is performed 
by iterative rerun of the model. 

Also, it is responsible to update the Problem record, 
kept in the directory of CEA-DSS, with key information about 
the model runs. Thus, any future reference to this problem 
will not require any model execution, except if  modifica- 


tions take place on the initial data or on the cost range. 
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C. MODEL EXECUTION 


Contains statements to call routines from the model 
base. It controls the execution of the model assuring the 


logical sequences of computation. 


D. SENSITIVITY ANALYSIS 


The Sensitivity Analysis unit helps the user analyze the 
results of the model runs. It is directly controlled by the 
dialog component. This unit consists of all the routines 
associated with graphic representations, control strategy 
selection and hard copy reports. 

Input data for the sensitivity analysis are the control 
sets in the set files. As stated earlier, a model run may 
produce thousands of control sets. Therefore, it is usual 
several control sets to have exactly the same cost. Since 
the amount of data is huge and the analysis is primarily 
based on costs, the control seta in a set file must be 
indexed on their cost. This creates the requirement for the 
database system to provide for direct file access and to 


allow the existence of duplicate keys within the same index. 


E. DIALOG INTERFACE 


The model component is directly interfaced with the 
dialog component in order the user to gain control over its 
processes. He/she is able to select the desired statistical 
method and cost range for a model run and the cost range for 


the data analysis process. 


F. DATABASE INTERFACE 


The model component is directly interfaced with the data 
component. This enables the model component to create and 
delete the set files where the generated control sets are 


stored. 


34 


VI. THE DATA COMPONENT 


The data component consists of two main units. The 
the Database Management System and the Database discussed 


in the next chapter. 


A. THE DATABASE MANAGEMENT SYSTEM (DBMS) 


The complexity of the Dialog component and the Model 
component, as well as the effective and efficient operation 
of the system lead to the selection of a Relational Database 
System. One characteristic of a Relational Database is the 
use of fixed length records. However, variable length 
records cannot be avoided. Since the data component requires 
functions like addition, deletion and modification on data, 
the elimination of modification anomalies seems to be of 
High priority. 

The DBMS provides capabilities for sequential, indexed 
sequential and direct file access. Indexes are organized as 
B-trees. In a B-tree, a data unit is accessed by using a 
key. Any given key, primary key, is related to one and only 
one data unit in adata file. The system permits also the 
existence of duplicate keys or secondary keys, which are of 
great importance for the sensitivity analysis as discussed 


in the previous section. 


57 EILES USED BY THE SYSTEM 


Files in the system can be divided into three 
categories, according to their initial creation: 


. Files created by the data component. These are the 
directory of the system and its index. The directory 
contains all the problems available in the systems 
library indexed on their description. Duplicate problen 
description is not permitted. 
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- Files initiated by the user. The Controls file and 
the Exposures file fall in that category, indexed on 


their “index”. Index is a unique key generated by the 
DBMS for management purposes. It keeps trac of 
modification anomalies and makes the user's work 


easier. Actually, it identifies the current position of 
the data unit in the data file and NOT the data unit 


itself. 

. Files created ex the model execution. Each time the 
model is executed for a specific method, a set file is 
created indexed on set cost. Duplicate keys are 


necessary here because it is possible several sets to 
have the same cost. These files cannot be modified by 
the user or the system. 


C. FILE CREATION/RETRIEVAL 


The Data component has the flexibility to deal with 
library of problems and not with only one problem. In order 
to achieve that, it must have the ability to recognize and 
retrieve the files related to the problem in request, or to 
create files for that problem, if it is not found in the 
directory of the CEA-DSS. The algorithm followed is the 
following: 


ə The director of the system has the fixed file name 
“PROBLEM”. The data file has the fixed filetype 
^DTA^and its index the ”IDX”. 


. All the files created for one problem have as file 
name the description of the problem. 


. The controls file has as filetype the ’DCL’ and its 
index the ^ICL'. | 


- The exposures file has as filetype the ’DXP’ and its 
index the 'IXP'. 


. For the set files the algorithm used is more 
complicated. Additionally, the DBMS must be provided 
with an identifier indicating the method to which the 
set file refers. For that reason, the filetype for set 
files is separated into to fields. The first one, one 
character long, identifies the method, and the second 
one, two characters long, identifies the data file or 
the index. For the first field, the letters ’W’,’P’ and 
“R’ correspond to the Weighted,Pert and Ranking method. 
For the second field, the “DT” denotes the data file 
and the ‘IC’ the index file. 
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VII. DATABASE DESIGN 


To some extent, Database design is an intuitive and 
artistic process. There is no algorithm for it. Typically, 
it is an iterative process. During each iteration, the goal 
is to get closer to an acceptable design. The database 
design is divided into two phases: logical design, where the 
needs of user are specified, and the physical design, where 
the logical design is mapped into the constrains of particu- 


lar program and hardware products. 


A. LOGICAL DATABASE DESIGN 
gr Logical Database Records 


The database of the CEA-DSS 15 required to maintain 
four different kinds of records. The first one, the PROBLEM 
record, is the data unit of the system's directory. Each 
problem has its own unique record. This record, except the 
problem description, contains key information about the 
most recent execution of the model on that problem. The 
second, is the EXPOSURE record. This record contains the 
description of the exposure and weights for the three 
methods. The third, the CONTROL record, has the description, 
the associated cost and elements indicating the  effecti- 
veness of the control activity on different exposures. The 
last, the SET record, is the output of the model execution 
and contains the combination of the control activities, and 
the results of the model run. Field descriptions for the 
logical database records are shown in Table 2. 

Constraints on data items appear on Table 3. These 
constraints are limitations on the values that database can 
have. They are divided into three groups. Field constraints 


limit the values that a given data element can have. 
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TABLE 2 
LOGICAL DATABASE RECORDS 


Field 


PROBLEM Record: 


Problem Description 
Problem Creator 
Problem Date 
Controls for. 

Weighted Method 
Control. fors 

P.E.R.T. Method 
Controls fors 

Ranking Method 
Weighted Method 

Total Cost of Controls 
P.E.R.T._Method_ 

Total Cost of Controls 
Ranking Method 

Total Cost of Controls 


EXPOSURE Record: 


Exposure Description 
Exposure Damage 
Exposure Probability 
Smallest Damage 

Most Likely Damage 
Largest Damage 
Exposure kankP 
Exposure Rankü 


CONTROL Record: 


Control Description 

Control Cost 

Control Effectiveness 
on Exposure 


SET Record: 


Set combination 
Expected Benefita 
Expected Loss 

Set Cost 

Expected Coat 
benefit Cost Ratio 
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Description 


Alphanuneric, 8 characters 
Alphabetic, 25 characters 
Format MM/DD/YY 


Numeric(integer), 2 digits 


N 


Numerictinteger), digits 


Numeric(integer), 2 digits 
Numeric(integer2, 10 digits 
Numeric(integer), 10 digits 


Numeric(integer), 10 digits 


Alphanumeric, SO characters 
Numeric(integer), 8&8 digits 
Numerictreal), S digits 
NumericC(integer), 8 digits 
Numeric(integer2, 8 digits 
NumericC(integer), 2 digits 
Numerictreal), S digits 
Numeric(real), 5 digits 


Alphanumeric, 50 characters 
Numeric(integer), 8 digits 


Numeric(real), 5 dıgits 


Numeric(binary), variable 
Numeric(integer), 10 digita 
Numeric(integer), 10 digits 
Numeric(integer), 10 digits 
Numeric(integer), 10 digıts 
Numeric(real), 5 digits 


TABLE 3 
CONSTRAINTS FOR LOGICAL DATABASE RECORDS 


Field Constraints: 


Problem Description must not be null 
Controls for Weighted Method must not be O 
Eoutrols"for P.E.R.T. Method must not be O 
Controls for Ranking Method must not be O 

Exposure Probability must be from 0.000 to 0.999 
Exposure RankP must be from 0.000 to 7.000 

Exposure RankQ must be from 0.000 to 7.900 

Control Effectiveness on Exposure from 0.000 to 0.999 
Benefit Cost Ratio must be greater than 1.000 


Intrerecord Constraints: 


Most Likely Damade greater than Smallest Damage 


Largest Damage greater than Most Likely Damage 


Interrecord Constraints: 


Problem Description must be unigue 

Exposure Description may be unique 

Control Description may be unique 

The number of Controls for Weighted. Method fields must 
be equal or less than the number of Control records. 
The same must be true for the Controls for P.E.R. and 
Ranking Method. 


The number of Control Effectiveness on Exposure fields 
must be equal to the number of Exposure records. 


The level of the Set Combination must be equal or less 
than the number of Control records. 
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Intrarecord constraints limit values between fields within a 
given record.  Interrecord constraints limit values between 


fields in different recorda [Ref 101. 


2. Loqical Database Record Relationship 


Figure 7.1 shows possible relationships among the 
records used by CEA-DSS. This figure is a data structure 
diagram. Single/double arrow notation is used to express a 
one-to-many relationship and double/double arrow representa 


a many-to-many relationship. 


PROBLEM 


m. R 
EXPOSURE -——» CONTROL SET 


| | | | 





Figure 7.1 Data Structure Logical Diagram 


The above complex network is further decomposed 
into trees in order the database to be able to deal with 
the data requirements. Figure 7.2 shows the decomposition 
of the complex network. It is a four level tree structure 
and represents relationshipa according to the model specifi- 
cations. For clarity purpose, the Exposure is represented 


with the letter “E” and the Control with the letter ”C”. 
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The daehed lines connecting aets with controls and controls 
with exposures indicate that it ia not necessary for a set 
to include all the control activities or a control activity 


to influence all the exposures. 


PROBLEM 


\ \ i 


4 
4 
' 


i | \ : ` 
EB FB [E] 





Eigure 7.2 Decomposition oí the Data Structure 


=. Data Manipulation in the CEA-DSS Database 





The possible transactions and the data that the 
transactions can change are liated in Table a. Sonme tranaac- 
tions change data, some add new data, some delete data and 
some are simple queries. Queries are all the transactions in 


the &ensitivity analysis part. No data are modified. 
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TABLE 4 


POSSIBLE TRANSACTIONS FOR THE CEA-DSS 


Transaction 


NEW PROBLEM 


DELETE PROBLEM 


ADD EXPOSURE 


ADD CONTROL 


DELETE EXPOSURE 


DELETE CONTROL 


EDIT EXPOSURE 
EDIT CONTROL 


MODEL EXECUTION 


Data or Transaction Involved 


Add one record in the directory 
Create Control and Exposure files 
Add, at least, two Exposures and 
two Control activities 

Erase Control and Exposure files 
Erase any existing Set File 


Remove the Problem record from 
the directory 


Erase the directory, ií there is 
not another problem in it 
Add one record in the Exposure file 


Update records in the Control file 
Add one record in the Control file 
Remove record from the Exposure file, 


i£ it has more than two records 


Remove references to this Exposure 
from the Control records 


Remove record from the Control file, 
if it has more than two records 


Modify record in the Exposure file 
Modify record in the Control file 


Erase any existing Set file for the 
selected method. 

Create Set filë 

Add Control Sets in the Set file 


Update record of the current problem 
in the directory of the system 
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Pe PHYSICAL DATABASE DESIGN 


During the second phase of the database design, the 
physical design, a transformation takes place. The logical 
schema is transformed into the particular data constructs 
that better satisfy the implementation requirements and 


constraints. 
da Design Constraints 


One implementation requirement for the CEA-DSS is to 
be used on microcomputers. This requirement along with the 
other requirements, discussed in the framework, introduce 
the following constraints for the physical database design 
phase: 

. Integer numbers are not allowed in the system. All 
numbers have to be of type real and will be stored 


in the system as strings of characters. 


" The length of records in bytes must be limited as much 
as possible because of microcomputer limitations. 


: Since the size of the Control record depends on the 
number of the Exposure records, the number of Exposures 
for one problem may be 24 at maximum. 

. The number of control activities for one problem are 
limited to 13 at maximum. Three model runs, one for 
each method, for a problem having ı > X<control 


activities, may generate up to 24,576 set records. 
These records need at least 3 Mbytes to be stored. 


2. The Physical Schema 


The Physical database records are slightly differen- 
tiated from logical records to satisfy the design 
constraints. The field description of the records is shown 
on Table S where all numerics are of type real and the 
abbreviation ’char’ instead of “character” is used. 

Keys are identified according to the data retrieval 
requirements. The record relationships and constraints 
emain the same as in the logical design. 

The idea of having flat files in the database is 


infeasible because of the model’s computational complexity. 
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TABLE 5 
PHYSICAL DATABASE RECORDS 


Field 
PROBLEM Record: 


Description 


Indexed on Problem Description 


Problem Description 
Problem Creator 
Problem Date 
Controls for 

Weighted Method 
Controls for 

. a R ә T ú Method 

Controls for 

Ranking Method 


Weighted Method. 
Total Cost of Controls 
P.E.R.T. Method 


Total Cost of Controls 
Ranking Method 
Total Cost. of “Controls 


EXPOSURE Record: 


Indexed on Exposure Index 


Exposure Index 
Exposure Description 
Exposure Damage 
Exposure Probability 
Smallest Damage 

Most Likely Damage 
Largest Damage 
Exposure RankP 
Exposure_RankQ 


CONTROL Record: 
Indexed on Control_Index 


Control_Index 

Control Description 

Control Cost 

Control Effectiveness 
on Exposure(1..24) 


SET Record: 
Indexed on Set Cost 


oet combination 
Expected Benefits 
Expected Loss 

Set Cost 

Expected Value 
Expected Cost 
Benefit Cost Ratio 


Alphanumeric, 8 char 
Alphabetic, 25 char 
Format MM/DD/YY 
Array(1..13) of 2 char 
Array(1..13) of 2 char 


Array(1..13) of 2 char 


Numeric, 10 char 
Numeric, 10 char 
Numeric, 10 char 
Numeric, 2 char 


Alphanumeric, SO char 
Numeric, 8 char 
Numeric, 5 char 
Numeric, 8 char 
Numeric, 8 char 
Numeric, 8 cnar 
Numeric, 5 char 
Numeric, S5 char 
Numeric, 2 char 
Alphanumeric, SO char 


Numeric, 8 char 
Numeric, 5 char 
Array(1..13) of 2 char 
Numeric, 10 char 
Numeric, 10 char 
Numeric, 10 char 
Numeric, 10 char 
Numeric, 10 char 
Numeric, 5 char 


More specifically, the use of flat files should increase 
dramatically the time required for a model run, something 
undesirable for a DSS. 

Variable length records are used instead. This 
variability in length results in loss of storage capacity 
because the record occupies space equal to its maximum 
length regardless its actual length. This, off-course, is 
the primary disadvantage of the variable length records, but 
for that particular application is justified by the fact of 


time savings. 
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VIII. IMPLEMENTATION OF THE. CEA-DSS 


One of the objectives of the implementation phase is to 


use the CEA-DSS with microcomputers. 


A. THE PROGRAMMING LANGUAGE 


The complexity of dialog and data component underline 
the need for a structured programming language which can 
Support character manipulations, screen management and, to 
some degree, mathematic calculations. Turbo Pascal 


(Version 2.0) was chosen for this particular implementation. 


B. SUPPORTING PACKAGES 


Turbo Access Toolbox (Version 1.00) is used for the 
database management system. Turbo Access provides for 
sequential, indexed sequential and direct file access, 
allowing and the existence of duplicate keys in an index 
file. Turbo Graphix Toolbox (Version 1.004) is used for the 
graphics part of the system. 


C. THE DATA FLOW IN THE CEA-DSS 


In order to deal with the high complexity of the data 
and transaction flow, it was necessary to divide the system 
from the beginning into four major areas. This helped to 
draw the initial diagrams. Using these diagrams as the base, 
after reviews and refinements, the final software structure 


was derived. These four areas are the following: 
l; The Main Area 


This area contains data flows and transactions 


occurring from the initialization of the system until the 
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main menu appear cn the screen and the user make his/her 
selection. Figure 8.1 shows the refined flow diagram of the 


main area. 
2. The Database 


Figures 8.2, 8.3 and 8.4 are the flow diagrams of 
this area. It contains transactions and data flows related 
to the database management system, like updating control and 


exposure files, switching problems, and deleting problems. 
3. The Model 


The model area diagram, Figure 8.5, describes all 
the operations Of the model execution. Figure 8.6, presents 
in detail the data flow during the generation of the control 
sets. This is the most important and most complex part of 
the CEA model and is included here for maintenance and 


future modification or improvement purposes. 


4. The Sensitivity Analysis Area 


Transactions and data flows associated with the 
decision support part of the CEA-DSS are illustrated in 
Figures 8.7, 8.8 and 8.9. 


D. SOFTWARE STRUCTURE 


The refined software structure, Figure 8.10, is a 
rearrangement of the flow diagrams from the perspective of 
the flow of control in the system. The requirement for the 
user to access control over the whole process, underlines 
the need for a hierarchical flow of control among the 
various processes of the system. Top-down is considered as 
the most effective design for the CEA-DSS since it results 
in a modular and highly cohesive software structure. 
Modularity and high cohesion facilitate the coding and 


maintenance phases. 
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Figure 8.3 Delete Problem Flow Diagram (Database) 


SO 









p4o3ay 
84015 


раозау 
1941J 339 


puoray 
1*8N 





p403ay 
SNOTAÐJ 


nu 


«Dn ЕЈ 


nuawqns 


aseqq 





ada 


ala 





ME-PUNCLE 


atti 





31tJ (043002 
ayepdn 





ja unsodx3 


A 


^ 


p.i02ay 
aja[ag 


ерлозау 
jo JaQUAN 








eeg 
3ndu] 


p.03ay 
Pp 


(Database?) 


Update Files 


Figure 8.4 


əl 


с̧и a1n3ax3 


spou1ay 
aui [TU 


Ә11Ј 385 
ӘјРӘА? 








POY yay 
Guryuey 


9% 


6386 10.00) 


à]PJauag 





¿Punoj 


allı 395 
put4 


[04300] 


GAT 4I9 $99 





Pou yay 
“1034 





9114395 


3j1JM3y 





poy yal 
рәјҹ̧ӧтән 








Model Flow Diagram 


Figure 8.5 


Lowpute 
Vk 


Figure 8.6 





Number of 
Combinations 
Counter 
1=0 


Convert 
into binary 


Compute 
Li, BCP 


Set 
Record 


Upen 
Directory 









Update 
Problem 
Record 






DS 






Increment 
i by | 


Control Sets Flow Diagram (Model) 





3113 195 
Bu tque 





nuanqng 
UT 





alt} 189 
рәјубтан 





aqel 
1043402 


SJ 1ude 4g 


3 [Q8] 
aAnsodx3 





Afiayeuys 
1243023 









Sensitivity Analysis Flow Diagram 


Figure 8.7 


54 






Ranking 
Set fiie 


Cost Cost 

Range Ranpe 
Search Search 
Ck) Low Ck) Low 


Find Find 
Mir, TÜL Max. BCR 


Figure 8.8 Control Strategy Flow Diagram (Sens. Analysis) 
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E. IMPLEMENTATION PROBLEMS 


The most serious implementation problems are problems 
associated with the memory management of a microcomputer. 
The capacity of the memory dedicated to the Central 
Processing Unit (CPU) is 64 Kbytes for a microcomputer. 
Consequently, the size of the program part called, along 
with all the type declarations and the supporting modules, 
must not exceed the size of the CPU’s memory. This is a 
troublesome limitation when dealing with long programs. 

This is the case for the  CEA-DSS. The inclusion of the 
Turbo Accesso and Turbo Graphix packages within the actual 
program further limited the allowable size of its modules. 
Reduction of the module size implies a loose control 
hierarchy. An effort to reorganize the software structure 
resulted in undesirable control flow  inefficiencies. 
Fortunately, Turbo Pascal provides for overlay organization 
which eliminates the memory size limitation. 

A technique, called overlays, is used to allow the 
system to be larger than the amount of memory allocated to 
it. The idea of overlays is to keep in memory only those 


instructions and data that are needed at any given time 


(Ref. 111]. When other instructions are needed, they are 
loader into space that was previously occupied by 
instructions that are no longer needed. However, this 


technique suffers from the following limitations: 


. À module must first be loaded into the memory in order 
to be executed. This causes the system to run somewhat 
more slowly, due to the extra 1/0 operation to read 
the module. For this reason, it is recommended to load 
the CEA-DSS software on a hard disk or a ram disk. High 
access speed devices would result in considerable 
reduction of access time. 


. Since overlays share the same space in memory, a module 
cannot call modules which belong in another overlay 
of the same area. For example, a module calls another 
one from a different overlay. This overlay is loaded in 
place of the caller and the called module is executed. 
The problem is that after its execution the system is 
meshed because it does not find the caller to return. 
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This introduced additional problens to the original 
structure of the program. The inclusion of control code, 
like flags, labels, case and if then else statements, helped 
in establishing communications among the various overlays of 


the same area. 


F. EFFORT DISTRIBUTION FOR THE CEA-DSS DEVELOPMENT 


CEA-DSS was built in five months and required an effort 
of six man-months. Table 6 shows the distribution of the 
effort, in percentages, among the different phases of the 


CEA-DSS development. 


TABLE 6 
EFFORT DISTRIBUTION 


Activities 
Requirements Analysis and Initial Design 


Detailed Design 


Programming, Debugging and Testing 


Initial Testing and User’s feedback 


Stepwise refinement of the components 
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IX. A SESSION WITH THE CEA-DSS 


The Objective of this chapter is to illustrate the 
operation of the CEA-DSS. The figures in thig chapter have 
been generated during the testing phase of the CEA-DSS on a 
IBM PC-XT microcomputer. 

A series of screens has been suggested as the most 
effective way to describe step-by-step the systems basic 
operation. 

STEP 1: Drive definition (Figure 9.1). The system has 
the flexibility to use a different drive for its database. 


| EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS | 


| RCTION: | 


IT IS BETTER THE DSS TO Be ON A DIFFERENT DRIVE 


DEFINE THE DRIVE YOU WANT TO USE FOR FILES 
DO NOT USE THE LETTER C IF THERE IS NO HARD DISK 


| 
| 
i 


DRIVE A,B,C.D,E or F: | Togay is: 8/19/1985 | 


Lo ни ики 





Figure 9.1 Drive Definition 


Care must be taken for not using drive "C" with IBM PC-XTs 


which do not have a hard disk drive. In all other cases, 
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CEA-DSS has the ability to find any wrong drive definition 
and prompte the user to redefine the drive. 

STEP 2: Directory (Figure 9.2). The directory contains 
information about previously defined problems. It is located 


on the drive where data for these problems are stored. 


| EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS | 


ACTION: GIVE PROBLEM NAME 


CHOOSE ONE OF THE FOLLOWING OR CREATE YOUR OWN PROBLEM 


PROBLEM: CREATED BY: DATE: 

CMC SCHAEFFER HOWARD 8/15/1985 
PROBLEMI PRESSMAN JOHN 8/13/1985 
PRÜBLEM2 ELSON MARK 8/19/1985 
TEST RICHARD NOLAN 7/30/1985 


Number of Problems in tne Directory: 4 


ENTER THE NAME OF THE PROBLEM: DSSTEST | Today Is: 8/19/1985 





Figure 9.2 Directory 


When a new drive, 1.6. a new floppy disk, is selected, 
the system creates a directory first, and then prompta tne 
user to define the problem. For a pre-defined drive, a 
listing of the directory appears on the frame. The user may 
select a problem from the directory, or define a new one. In 
case of an existing problem selection, the process continues 
with Step 4. 

EMEP 3; Data entry (Figure 9.3). The system creates 
the control and exposure files for the particular problem. 


Then, the user has to provide the initial data. At least 
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EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
PROBLEM: DSSTEST 


— o com Sad e A | n a ари 


ACTION: UPDATE EXPOSURES 


Index:03 Description:Exposure 3 


WEIGHTED: Damage: $50000 


P.E.R.T: Smallest :$30000 


RANKS : Rank P:4, 000 


Probability:0. 95 
Most Likely:$55000 


Rank 0:4. 300 


Rank P Damage caused by error 


might happen once 
might napoer once 
might happen once 
might naopen once 
might happen once 
might napoen once 
mipht hapoen ten 


SON & CJ Fo — O 


virtually impossibie 


1n 400 years 
in 40 years 
in 4 years 
in 100 days 
in 10 days 
in 1 day 
times a day 


Rank Q Damage caused by failure 


Ü 


“tn & Us PM — 


negligipie 

about $10 
about $100 
about $1, 000 


about $10, G00 
apout $100, 000 
about $1,000, 000 
over 51, 000, 000 


Largest :$65000 


— -—— EA mg Ri HE min DH coin ,———.--.————— algum 


= — eee 
| R)dd, D'elete, E)dit, N)ext, Previous or Q)uit: | Today Is: 8/19/1985 | 


| 


— —"ыг o — -—1 -—- (SB. ee ese eee sha 


EFFECTIVENESS OF CONTRO. AND SECURITY OF COMPUTER 
ACTION: UPDATE 


PROBLEM: DSSTEST 


Index:02 Descriotion:Control & 
Cost :$2150% 


Effectiveness on Exposure 
Effectiveness on Exoosure 
Effectiveness on Exposure 
Effectiveness on Exposure 


cose 
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Figure 9.3 


| Тодау 15: 0/13/1385 
1 


Data Entry 


i 
t 


two exposures and two control activities are reguired to 
enable the CEA-DSS to generate control combinations. The 
process during this step is under the direct control of the 
CEA-DSS. 

STEP 4: The Main Menu is shown in Figure 9.4. The 


logical selection for a new problem is the Model option. 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
PROBLEM: DSSTEST ACTION: MAIN MENU 


MAIN MENU OPTIONS: 


HELP 

UPDATE FILES OR CHANGE PROBLEM 
RUN THE COST EFFECTIVENESS MODEL 
SENSITIVITY ANALYSIS OF ALTERNATIVES 
EXIT TO DOS 


SELECT 1,2,3,4 or 5; > Tocay Is: 8/19/1905 





Figure 9.4 Main Menu 


STEP 5: Model execution. The Model Menu, allows the 
selective invocation of one of the three statistical metnoda 
for a model run. The user may select one method or all of 
then. Then, the ayatem prompta the user to define the 
desired level of cost according to which the generation of 
control seta will be performed. The use of realistic cost 
levels ia recommended, since it may result in a considerable 


reduction of the amount of control sets to be generated 
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and, consequently, in storage and I/0 time. Figure 9.5 shows 


the model menu and the cost level entry. 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 


PROBLEM: DSSTEST ACTION: MODEL 





MODEL MENU OPTIONS: 


| 

2. RUN THE WEIGHTED METHOD | 
3. RUN THE P.E.R.T METHOD | 

| 4. RUN THE RANKING METHOD | 
| 5. RUN ALL THE METHODS | 
| 6. RETURN TO MAIN MENU | 


| SELECT 1,2,3, 4,5 or 6 : | Today Is: &/19/1985 | 
fr e AAA 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 





| PROBLEM: DSSTEST | ACTION: MODEL / WEIGHTED METHOD | 
A mhil ııı 


| 
! 
| 
| 
| 
| 
| 
| 
| 
| 


Total Damage Due io Exposures : 147800 


Cost to Impiement All Controis : 69300 


Give The Maximum Amount You Want Ta Soernd Un Controls 
or press Enter for Ri. 


MAXIMUM : $ 69500 
i 


————— 


Ls, IS ee _e_1_f'’ ut_——_—m_mÈc 


| ! Togay 1s: 8/19/1985 


| 
! 
| 
| 
| 
| 
i 
i 
| 
| 
| 
| 
| 


1 
( 
I 
t 
I 
, 


Figure 9.5 Model Menu and Cost Level Entry 
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STEP 6: Sensitivity Analysis Menu (Figure 9.6). The 
prerequisite for accessing the "Control Strategy" and the 
"Graphics" options, is the execution of the model. The same 
is true and for the "Print Reports" option when a printout 


of a set file is requested. 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
PROBLEM: DSSTEST | ACTION: SENSITIVITY ANALYSIS 


SENSITIVITY ANALYSIS MENU OPTIONS: 


1, HELP 
FIND CONTROL STRATEGY 
GENERATE GRAPHICS 
PRINT REPORTS 
RETURN TO MAIN MENU 


SELECT 1,¢,3,40r 5: İ Today Is: 8/19/1985 





Figure 9.6 Sensitivity Analysis Menu 


SIEP 7.: Print Reports. The system has the capability to 
produce three types of reports. It is expected that the user 
will use these reports, during the sensitivity analysis 
process, as reference. The first table (Figure 9.7) summari- 
zes the initial data of expected losses caused by exposures, 
for three &tatistical methods. The second report 
(Figure 9.8) Summarizes the control activities’ effective- 
ness on exposures. Finally, control sets report is a listing 
of the file created and updated by a model run. Figure 93.9 
shows the control sets generated according to the weighted 


method. 
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DECISION SUPPORT SYSTEM 


COST EFFECTIVENESS ANALYSIS 
FOR : 
CONTROL & SECURITY OF COMPUTER SYSTEMS. 


EXPECTED LOSSES CAUSED BY EXPOSURES FOR WORK DSSTEST 


THE WEIGHTED METHOD 


A AAA AAA — — DE M eR TT OO EER SR SOE a mur EE Sa E im 
eee une n ES eS Se ee ee ee SE: ак ә 


POTENTIAL ERRORS AMOUNT OF PROB/TY OF 
DAMAGE OCCURENCE 
01 Exposure 1 40000 0, 850 
02 Exposure 2 60000 0.78% 
03 Exposure 3 90000 0. 950 
04 Exposure 4 30000 0. 620 


THE P.E.R.T METHOD 


= Se A ee ee 
= oem ee ee ee ee ene ee 














POTENTIAL ERRORS AMOUNT OF DAMAGE 
smallest m.likely largest 
01 Exposure 1 30000 35000 40000 
02 Exposure 2 25000 45,000 63207 
03 Exposure 3 30000 595000 65000 
04 Exposure 4 15000 20006 40006 





A A A e ne > sco O A aa cur Jade A © Ia SIE GRO WR c.c: ci csf NP cè CR Ham ama ii te HP “АМР conocemos cr = ee = ms 


POTENTIAL ERRORS ESTIMATION Or PROBRBILITY 
Ur OCCURENCE AND DAMAGE 

Rana £ Rann E 
01 Exposure | 3. 800 4, 202 
02 Exposure ¢ 3. 850 4, 9C. 
03 Exposure 3 4,000 4, 306 
04 Exposure 4 “el 5, 300 

Figure 9.7 An Expected Losses Report 
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DECISION SUPPORT SYSTEM 


COST EFFECTIVENESS ANALYSIS 
FOR 
CONTROL & SECURITY OF COMPUTER SYSTEMS. 


CONTROL ACTIVITIES FOR WORK DSSTEST 


01 


Control 1 


02 Control 2 
03 Control 3 
04 Control 4 


EXPOSURES FOR WORK DSSTEST 


01 
02 
03 
04 


Exposure 1 
Exposure 2 
Exposure 3 
Exposure 4 


EFFECTIVENESS OF CONTROL a(1) ON EXPOSURE &l1) 


EXPOSURE |. 01 | O2 , OF i 04 | 


aS ди eli DA GG GE SRE de A ,———,--— 





: 0.800 0.000 0.000 0.00) 
: 0,000 0,000 О, 000 0,82% 
i 0.000 0.709 0,000 0.00) 
1 0.000 0,000 0.850 0.000 


COST ali): 13000 21500 10000 25906 


— n 





a «ee ni i 
-.—“————————-————..u.......səm....B....., 6. o» cero cs co © = — “= “== e m dk @& — — — 2 — — tb << di cms cU m m anı ii 


Figure 9.8 A Control Effectiveness Report 
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DECISION SUPPORT SYSTEM 


COST EFFECTIVENESS ANALYSIS 
FOR 
CONTROL & SECURITY OF COMPUTER SYSTEMS. 


WEIGHTED METHOD: CONTROL SETS FOR WORK DSSTEST 


CONTROL ACTIVITIES USED BY THE CONTROL SETS: 


01: Control | 
02: Control 2 
03: Control 3 
04: Control 4 

CONTROL ACTIVITIES VALUE COST CİD EE 
03, 16575 10006 141225 Koi 
01, 27200 13000 1 33600 2, 09 
02, 33050 21500 136050 1.54 
01,03, 43775 23000 127025 1.9 
04, 38844 25000 133956 bəs 
02,05; 49825 31500 129475 27 
01, 02, 60450 34500 121855 177 
03, 04, 99413 35000 12738: 1.58 
01,04, 66044 38000 119756 1573 
01.02703, 77025 44500 115878 7: 
(2, 04, 72094 56500 122206 loss 
01, 03, 04, 82619 48000 113181 IE 
02, 03, 04, 886693 56500 115631 1.56 
01, 02, 04, 93294 39500 108006 1.66 
01,02,03, 04, 115869 69500 10143: 1.66 


Figure 9.9 A Control Sets Report 
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The print menu is described in Figure 9.10. Before 
&electing an option, the user must make sure that the 


printer is on-line. 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
PROBLEM: DSSTEST ACTION: SENSITIVITY ANALYSIS / PRINT REPORTS 


PRINT REPORTS MENU OPTIONS: 


, HELP 

. PRINT EXPOSURE EXPECTED LOSS TABLE 
. PRINT CONTROL EFFECTIVENESS TABLE 

. PRINT SET FILES 

. RETURN TO SENSITIVITY ANALYSIS MENU 


SEEEET 1,2,3,4,0r 3 * Today Is: 8/19/1985 





Figure 9.10 The Print Menu 


STEP 8: Graphics. Curves and histograms help the user 
conceptualize the ditterences among alternative control sets 
and among different statistical methods. The incompatibility 
problem of the various types of printers does not allow the 
system to make hard copies of the graphs. The user can use 
instead the [Pressel key of the keyboard. Each graphics 
screen contains two graphs. The upper graph depicts the 
Benefit Cost Ratio versus Cost relationship, and the lower 
Graph the Total Expected Cost versus Cost. Figure 9.11 shows 
the curves for the DSSTEST problem and Figure 9.12 the 
histograms. For readability purposes, on each curve can be 


drawn up to 200 points and on each histogram up to 24 bars. 
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Figure 3.14 
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Graphical Analysis using Histograms 


Brgure 9.12 
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STEP 9: The last phase of the  CEA-DSS process is the 
control strategy selection. The decision maker may select 
the most effective (Figure 9.13) or the most cost effective 
control strategy (Figure 9.14) within the cost range he/she 
desires. The decision maker, helped by the reports and 
graphs, is expected to have a better opinion about the 


amount to be spent for control measures. 


—r————__——_—_—1111—_—__—==ww_e_TeF.e++e—_-®r-—r———————eo—wev»ytfoÌn_——P_-/prrrr——21à24m141É_m——_rr_1Èn=xowowwwr 
| EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS | 
! PROBLEM: DSSTEST | ACTION: SENSITIVITY ANALYSIS / CONTROL STRATEGY | 
WEIGHTED METHOD: THE MOST EFFECTIVE SET 
CONTROL : Control 1 
CONTROL : Control e 
CONTROL : Control 3 


Value of Control Set : 77025 Lost of Control Set  : 445 
Total Expected benefit : 30575 Total Expected Cost : 1122 


Cost Benefit Ratio(BCR): 1.73 


Prior Expected Damage Due to Exposures: 147800 
Post expected Damage Due to Exposures: 70775 


A AAA 


| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
! 


| Dress any Key., 1 oca. is: 8420/196508 
| 


Figure 9.13 The most Effective Control Strategy 


The optimal solution in the problem is found when the 
selected control set 1S both the most effective ana the 
most cost-effective over a predefined cost range. This is 
the case for this particular example. Figures 9.15 and 9.14 
show the same control set. Under the “Most Effective” 
option, the control set with the lowest expected cost is 
selected. Under the "Most Cost-Effective' option, the set 


with the highest BCR is the most preferable. However, 
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the system does not provide any algorithm for combining 
these two options in order to indicate the optimal control 


strategy. 


EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
PROBLEM: DSSTEST ACTION: SENSITIVITY ANALYSIS / CONTROL STRATEGY 


| WEIGHTED METHOD: THE MOST COST EFFECTIVE SET 
CONTROL : Control 1 
CONTROL : Control 2 

| CONTROL : Control 3 

| 


Value of Control Set : T1023 Lost of Control Set: 44500 


Cost Benefit Ratio(BCR): 1.73 


Prior Expected Damage Due to Exposures: 147800 
Post Expected Damage Due to Exposures: 70775 


| 
| 
| 
Total Expected Benefit : 32525 Total Expected Cost — : 115275 | 
| 


| press any key.. İ Togay Is: 8/20/1985 | 





Figure 9.14 The most Cost-Effective Control Strategy 


This is the basic process for a problem creation and 
analysis. Also, the user has the opportunity to access the 
database of the system through the Database Menu. He/she may 
modify the initial data, change problem and/or delete the 
problem. If modifications take place on the data, the model 
must be executed again. The deletion of the problem erases 
any file belonging to this as well as its record in tne 
directory. After that, the main menu appears on the screen 
allowing the user to select one of the "Help", "Database" 
and "Exit to DOS" options. The other options of the main 
menu are prohibited when there 15 no problem definition. The 


database choice after a problem deletion or changing the 


> 


current problem cause the previously described process to be 
repeated from the beginning. The database menu appears on 


Figure 9.15. 


| EFFECTIVENESS OF CONTROL AND SECURITY OF COMPUTER SYSTEMS 
Å | PROBLEM: DSSTEST ACTION: DATABASE 
| 


DATABRSE MENU OPTIONS: 


HELP 
CHANGE PROBLEM 


UPDATE EXPOSURE FILE 
UPDATE CONTROL FILE 
. RETURN TO MAIN MENU 
lr rr oro o io es, E (7 


| SELECT 1,2,3,4,5 or 6 : 2 | Togay is: 8/20/1985 | 
| CERTE rio: AGE 


| 
| | 

| 
| | 
| . DELETE CURRENT PROBLEM | 
| | 
| 

| 

| 
i | 
i | 





Figure 915 Database Menu 
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X. CONCLUSION 


The purpose of the research was to implement a DSS for 
selecting EDP control strategies. Three analytical methods 
for determining cost-effectiveness of EDP controls were 
integrated in a customized database management system. Also 
a careful user interface was designed to support user 
interactiveness with the system. 

From the user’s perspective, the current version of the 
CEA-DSS is able to handle any uneven condition associated 
with data entry and process request errors. The enhancement 
of an acceptable combination of colors and sounds contribu- 
tes to the user friendliness of the system. Since the users 
have different preferences, one possible improvement should 
be to let the user define the colors and sounds he/she 
likes. The help facility also can be easily modified to 
satisfy the DNE needs for on-line information, as discussed 
in Appendix B. 

From the system design perspective, GCEA-DS5 permits the 
user to exercise virtual control over its processes. The 
database system is exclusively designed and implemented to 
serve the introduced EXPOSURE, CONTROL and SET records. It 
is expected that any future enhancements in the database 
schema will require extensive modifications and maintenance 
to be done on the database and the DBMS. The model base of 
the CEA-DSS consists of the three variances of the CEA 
model. Integration of new techniques, using the existing 
data structure, will require slight modifications of the 
current system. The same is true for the sensitivity 
analysis part where any additional reports, graphs and 
control strategy selection algorithms will not influence the 


system. 
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One great inefficiency recorded during the testing 
phase is associated with the control strategy selection 
algorithm. The sample problem  DSSTEST, presented in 
Chapter 9, can be considered as an extreme condition. The 
solution was € recognized as the optimal one because it had 
both, the greatest Benefit Cost Ratio and the lowest Total 
Expected Cost. This is generally not the case. In reality, 
the optimal solution is found somewhere in the three 
dimensional spectrum composed of the Benefit Cost Ratio, the 
Total Expected Cost and a Scaling Relational Algorithm for 
them. It is expected that the enhancement of such an 
algorithm will dramatically improve the control strategy 
selection process. 

Another unresolved issue concerns the assignment of 
the BCR to the control sets. Control Sets consisting of 
fewer Control activities turn out to have higher BCRs. This 
is due to the nature of the algorithm that the model uses to 
compute the value of the control sets. A way to handle this 
would be to introduce in the computation of the control 
set’s BCR one more parameter which will be able resolve 
these differences. 

It is recommended that the CEA-DSS built during this 
research be evaluated on real life applications. In effect, 
all data used during the testing phase of the CEA-DSS were 
chosen on a random basis. Information gathered from a real 
life computer audit process would probably contribute to 
the evaluation of current control techniques. Furthermore, 
the CEA-DSS will not only support the selection phase but 
also the evaluation and exploration phases of the computer 


audit process life cycle. 
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APPENDIX A 
MESSAGES 


INFORMAL MESSAGES: 


CREATING EXPOSURE AND CONTROL FILES 


Initiation: À new problem has been introduced by the user. 


DELETING CONTROL 
DELETING EXPOSURE 
Initiation: Request for deletion of a control or exposure 


record. 


NEW DIRECTORY 


Initiation: New drive definition. 


CONTROL "description" IS NOT EFFECTIVE 
Initiation: The cost of a control activity is greater than 


its expected value. 


PLEASE WAIT 


Initiation: Control sets generation. 


PLEASE WAIT FOR THE PREPARATION OF THE GRAPH 
Initiation: Request for graphic representation, curve or 


histogram. 
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ERROR MESSAGES: 


SYSTEM REQUIRES 2 CONTROLS AT LEAST 
SYSTEM REQUIRES 2 EXPOSURES AT LEAST 
Initiation: Request for deletion of control or exposure 


record while the file contain only two records. 


THE SYSTEM CANNOT HOLD ANOTHER EXPOSURE 
Initiation: The user attempts to add the 14th control 
activity or the 25th exposure. | 


YOU MUST RUN THE MODEL FIRST 
Initiation: Request to access sensitivity analysis areas 


prior to the model execution. 


THERE IS NOT ENOUGH SPACE ON DRIVE X 
Initiation: Nonexistent drive definition or the defined 
drive does not have the appropriate Space tor a 


dictionary and problem creation. 


CHECK YOUR ENTRY. "HIGH" MUST BE GREATER THAN "LOW" 
Initiation: Entry of an ambiguous cost range for the 


Sensitivity analysis part. 


TRIGGER MESSAGES: 


DEFINE THE DRIVE YOU WANT TO USE FOR FILES 
Initiation: CEA-DSS activation or request to change the 


current problem. 
DO YOU WISH TO DELETE THE PROBLEM ? 


Initiation: Request to delete the current problem. The 


system prompts the user to confirm. 
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THERE IS ALREADY FILE FOR THAT METHOD 
Initiation: Request to rerun the model. The user can delete 
the set file only, or to proceed to model 


execution. 


CANNOT COMPUTE SETS WITHOUT EFFECTIVE CONTROLS 

CANNOT COMPUTE SETS WITH ONLY ONE EFFECTIVE CONTROL 

Initiation: Control sets generation. The user may correct 
some initial data or to abandon the current 


problem. 


THERE IS NO ANY SET WITHIN THAT RANGE 
Initiation: The cost range defined for sensitivity analysis 


is very limited. The user may widen the range. 


CANNOT MAKE GRAPH WITH LESS THAN 2 SETS 
Initiation: Request for graphics, while the defined cost 
range includes only one control set. The user 


nay redefine a wider cost range. 


Fás, 


APPENDIX B 
THE HELP FACILITY 


The help facility of the CEA-DSS is carried out via the 
HELP module, listed at the end oí the program listing in 
Appendix C. The Help module supplies the calling menu with 
information relative to its functions. The algorithm for 
this selective retrieval of information is based on a code 
character. This character is sent to the Help module as 
parameter in the call statement, identifying the calling 
part of the program. The Help module uses this character to 
assemble the file name of the text file where the requested 
information resides. 

The advantage of keeping the help text external to the 
program is that it can be changed easily, with any editor, 
without affecting the code of the CEA-DSS. The help module 
also has the advantage of returning control to the caller 
immediately in case that the requested help, text file, is 
missing. The files of the system dedicated to the help 


facility along with their content are listed below. 


File: HELEM EXT 
HELP ra Rar MENU 


UPDATE FILES OR CHANGE WORK 

This is the Database of the system. You have access to three 
files. The EXPOSURE, the CONTROL and the PROBLEM file. You 
can Add, Delete or Edit EXPOSURES and CONTROLS. You can also 
Change or Delete WORK. 

RUN THE COST EFFECTIVENESS MODEL 

Once you have updated the EXPOSURE and CONTROL files you 


can run the model. The model will create the set files 
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which will be used after for decision making. If you chose 
the current work from the directory of the system and you 
are not going to modify the EXPOSURE and CONTROL files you 
DON'T need to run the model. 

SENSITIVITY ANALYSIS 

This is the main area of interest. It will help you to find 
out the optimal solution according to your preferences and 
budget. There are available to you graphics and print 


facilities. 


File: HELPD.TXT 
HE LE PU R DARA Ba AE MENU 


At the bottom of the frame it appears always the command 
line which prompts you to make selections by typing numbers 
or letters. 

CHANGE PROBLEM 

The directory of the system is listed and then you are 
prompted to define the problem you desire. If you choose an 
existing one, you will be switched to that immediately. If 
you create a new one, you will be asked to enter, at least, 
two EXPOSURES and two CONTROL ACTIVITIES. 

DELETE CURRENT PROBLEM 

You can only delete the current problem. If you wish to 
delete a different problem, you must change the problem 
first, and then choose from the directory the problem you 
want to delete, and delete it. You will be asked to confirm 
for the requested deletion by typing the character "!" 
UPDATING EXPOSURE OR CONTROL FILE 

You can A)dd, D)elete, E)dit  Exposures and Controls, and 
scroll the files forwards and backwards using N)ext or 
P)revious. 

Keep in mind that the edit mode is always in the INSERT 
MODE. 
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File: HELPO.TXT 
Hu. MOTD EL 


You can run the model using the WEIGHTED PROBABILITY, the 
P.E.R.T method and the RANKING method. You will be prompted 
to enter the upper cost limit. If you have enough controls 
in the control file it is better to use as short cost 
ranges as possible in order to minimize the time that the 
system will require to generate the control sets. Don’t 
forget that N controls may produce 2 to the Nth power 
control sets. 
If you get a message like “NOT ENOUGH SPACE ON DRIVE X”, you 
can overcome that using one of the following: 

qur If you have already run another method for that 
problem, choose that method again, and erase its set file. 

2. Change problem, choose one from the directory that you 
do not need, delete it, and then choose again the problem 


you want to work on. 


File: HELPS.TXT 
1:5: ae FOR 5 EN S IE i A N ATL Y S TAS 


CONTROL STRATEGY 

Control strategy helps you determine the optimal control 
alternative from all the possible combinations of control 
activities, or the best one, according to the cost range 
you are asked to specify. 

GRAPHICS 

You can generate curves and histograms representing the 
relations between BENEFIT COST RATIO and COST, or between 
TOTAL EXPECTED 60 176 

REPORTS 

You can have a hardcopy of the exposures ar Controls mn 


tabular format, and a listing of the set files. 
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Fe: HELPB.TXT 
H ELP POR C OUNT ROL Selene ene TPE G Y 


POST EFFECTIVE ALTERNATIVE 

The most effective alternative is the one that it is 
expected to minimize the total expected cost. 

MOST COST EFFECTIVE ALTERNATIVE 

The most cost effective alternative is the one that will 


return the highest benefit per dollar spent. 


Eile. HELPG.TXT 
HEETE P E O R GRAPHICS 


You can print the curves or histograms by using the [Prt5c] 
key. Be sure that your printer is ON. The system will 
Switch it to the graphics mode. 

Curves and Histograms represent relations of Cost versus 
Benefit Cost Ratio and Cost versus Total Expected Cost. 

Each curve can hold up to 200 control sets to be drawn, 
and each histogram ut to 24. 

You will be asked to give the Cost Range over which the 
graph will be done. If the number of control sets within 
the selected range exceeds the above limits, the system will 


adjust the range. 


File: HELPP.TXT 

eee Pp FOR EK Reece KT S 
YOUR PRINTER MUST BE ON-LINE BEFORE YOU TRY TO PRINT ANY 
REPORT 
You must have set the top of form properly and use page 
length 11 inches in order the reports to be printed 


correctly. 
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APPENDIX C 


THE PROGRAM LISTING 


(Or Əb Əb Əb Əb Əb Əb e Әһ e MEM 36 3E e e MEME 46 96 96 36 36 36 36 OR RR) 


(xr 


C DECISION SUPPORT SYSTEM 

(ә 

C A COST-EFFECTIVENESS ANALYSIS 

(= РОК 

Ça CONTROL AND SECURITY OF COMPUTER SYSTEMS 


(s 
Ça 
(e 


FILE DISSPAS 


x) 
w) 
* ) 
* ) 
x) 
* ) 
* ) 
* ) 
* ) 


È DM A e dE ME 46 Ú Әр 96 36 6 36 36 36 Ú 6 96 96 6 6 36 96 36 96 6 36 36 6 96 96 096, e e e e e e e e e e 9636 M YÓ әрәб 6 Á e ik ) 


PROGRAM CEA-DSS; 
CSAS, | 


const 
(“= TURBO ACCES 
maxrecsize 
naxdatarecsize 
maxkeylen 
pagesize 
order 
pagestacksize 
maxheight 


var 
noofrecs : int 


(# INCLUDE FILES 
(SIACCESS.BOX) 
(SIGETKEY.BOX) 
(SIADDKEY.BOX) 
(SIDELKEY.BOXJ 
(ƏLİYPDEDEE. TS) 
(SIGRAPHIX.SYS) 
(SIKERNEL.SYS) 
(SIWINDOWS.SYS) 
(SIHATCH.HGH) 
(SITYPEDEF . D55} 
(SIUTILITY.BOX) 


5 CONSTANTS =) 
= 220: 

maxrecsize; 

1 

128: 

64; 

16: 

= 5: 


eger; 


* ) 
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(SIAXIS.HGH) 
(SIPOLYGON.HGH) | 
(SIHISTOGRM.HGH) FIRST OVERLAY 


(SIMENUS.DSS) 
(SIFORMATS.DSS) ——İ 


(SIHELP.DSS) 


(SIDATABASE.DSS) 
(SIMODEL.DSS) | SECOND OVERLAY 


(SISENSANAL.DSS) 


(== MAIN PROGRAM x) 


BEGIN 
textmode: 
textcolor(x); 
textbackground(z); 
help('I^'^»; 
ans := ” “; 
makeframe; 
putdate; 
flag := true; 
database; 


while ans <> “5” do 
begin 
mainmenu; 
if flag then 
ce (° SEEECT 1,2 or 5; .1<1,“2*,*5'l,ans) 
else 
sæect(” SELECT 1,2,3,4 or 5 :^7*52(^*1^..*5'],ams»; 
case ans of 


T n helpl M): 

“72” : database; 

^S3^ : model; 

”4” $ sensitivityanalysis 


end (of case) 
end: fof while} 


mirscr: 
SgotoxyCc15,12)5; 
write(^»x*x*** END OF THE DECISION SUPPORT SYSTEM *»»***»*»"); 
wait; 
textcolor(15); 
textbackground(05: 
clrscr 
END. 
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( H HH H HHK HHU H VAN ) 


(x 
(ә 
« 
( = 
(= 


ТУРЕ DECLARATIONS 


FILE  TTİEEBDEE- Dos 


* ) 
* ) 
» ) 
* ) 
* ) 


Ú xH H H H H H HH HH HH Ú HKA Ú K HÚ KK H Ú H K H H ÚH Ú Á 36 36 K 36 K Ú K U Ú K Ú U H H H K A Ú ÚU Ú Á Á HHRH HY) 


const 
maxctrl - 13; ( maximum number of control activities J 
maxexp = 24; ( maximum number of exposures } 
2 Os (standard text background) 
x - 14; (standard text color) 
type 
chset = set of char: 
str2 stringl2];: 
strs String fa) > 
str8 = string(8]; 
str10 = stringl10); 
str25 = string(25]; 
str4o = string[40]; 
strso string(S0]; 
str80 - stringt(801, 
anystr : string[255]; 
ctrlrange O..maxctrl; 
exprange = O.. maxexp; 
exposure - record 
index a Sere: 
description : strso, 
damage : str8; 
probability : str5; 
smallest, 
mostlikely, 
largest : str8; 
rankP, 
rankQ "STO 
end; 
eff = аггау(1..пахәхрјЈј of string(í221; 
ctrleff - arrayí(1..maxctrllÀ of eff; 
control - record 
index : Str2; 
description : strs0; 
cost : str8; 
effect : eff 
end; 
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controlmatrix - array[1..maxctrlJ] of control; 


combinationindex € arrayll..maxctrl) of str2: 
setrec = record 
setcomb : combinationindex; 
Vk,Lk,Ck, 
Nk, TCk e str10; 
BCR [weer 
end; 
problemrec = record 
problemname :  str8; 
creator 8 str25; 
date : strio; 
vcomb,pcomb, 
rcomb e Combinationindex: 
ətotcost, 
ptotcost, 
rtotcost St LO 
end; 


var 
filel, file2 : datafile; 
indexl,index2 : indexfile; 
rı : file; 
expsr : exposure; 
etrl «control. 
st . setrec, 
problem : problemrec: 
cproblem str o; 


wcombindex, 
pcombindex, 
rcombindex, 


comb >. combinationindex; 

ce >. ctril'eff-: 

CE ; array[l..maxCctrl] of str8: 
ctrlmatrix e Controlmatrix: 


totaloss, 
totalcost, 
ətotalcost, 


ptotalcost, 

rtotalcost > real: 
expno > integer; 
ans, tc ə Char: 

dr : aEr2; 
flag : boolean; 
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(SULUKULE) 


( * * ) 


(ә UTILITY.BOX * ) 
( s * ) 
C» The utility box contains all the procedures and ә) 
(e functions which are commonly used by all the x) 
( modules of the system. * ) 


(ə * ) 


(ULUER) 


(* upcasestr converts a string to upper case *) 
function upcasestr(s : str80) : str80; 
var 

p : integer; 


begin 
for p :- 1 to lengthts? do 
s[p] := upcase(sí(pl12)5; 
upcasestr :- s; 
end; 


(* conststr returns a string with N characters of value C#) 
function conststr‘(c : char; n : integer) : strg0; 
var : 

s : string(í80Ol; 


begin 
if n € O then 
n := Ó; 
s[OJ] :s chrín); 
tfillchartsti1,n,/e?” 
conststr := s; 
end; 


(* getvalue returns the ASCII values of a string *) 
function getvalue(s : anystr) : integer; 
var 

i, total : integer; 


begin 
total :s O; 
if length‘s) > O then 
for i := 1 to length(s) do 
total := total + ord(copy(s,i,l1)),; 
getvalue := total 
end: 
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(* strtoreal returns a real number equivalent to a string *) 

function atrtoreal(s : str10) : real; 

var 
È 
n 


integer; 
real: 


begin 
valís,r,t); 
strtoreal := r 
end: 


(* realtostr returns a string equivalent to a real number *) 
function realtostr(r : real) , str10: 
var 

Se: string [ 10]; 


begin 
fillchar(s,sizeof(s),0); 
str(r,s); 
realtostr := s 

ends: 


(* strtoint returns an integer equivalent to a string *) 
function strtoint(s : str2) : integer; 
var 

i,) : integer; 


begin 
val(s,i,));3 
strtoint := 
end; 


i 


(*» intostr returns a string equivalent to an integer >) 
function inttostrín : integer) : str2; 
var 

s $ stringtİ21: 


begin 
fillchar(s,2,0): 
strín,s); 
inttostr := s 
ends; 
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(* adjuststr removes any leadind spaces 
procedure  adjuststr(var s : anystr); 
begin 
while s(1) = ” * do 
if slim A then 
delete(s,1,1): 
end: 


(x the system waits for the user =) 
procedure wait; 


var 
ch . char; 
1,ј : integer; 
begin 


textcolor(15); 

gotoxy 2,23); write(conststr(^ 7,53)) 

gotoxy (3,23); write(^press any key..^ 

for i i= 1 to 3 do 

begin 
3 != sqr(random‘(30))+300; 
sound(3); delay(300) 

end; 

nosound; 

read(kbd,ch); 

gotoxy (3,23); əritət” 

textcolor(x) 

end; 


from a string *) 


.. 


(* Beep sounds the terminal bell or beeper 5) 


procedure beep; 
begin 

sound(680); delay(400); nosound 
end; 


(* inputstr is used for the entry and validation of data. 
It enables also the use of the cursor movement keys 


char-left, char-right and del. of the keyboard. * ) 
procedure inputstr(var s > anystr; 
l,i1,j : integer; 
term : chset; 
var tc : char = 
label 
again; 
var 
valid : set of char; 
value, 
Dp WI : integer; 
en < Char? 
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begin 
textbackground(14), 
textcolor(0); 
tc := #0; 
valid := term + [#8,#13,#27]; 
again: 
gotoxy (1,3); write(s,conststr(^ ’,l-length(s))); 
р := О, 
repeat 
gotoxy(i*p,j3?; readí(kbd,ch»; 
if not (ch in valid) then 
beep 
else 
begin 
if (ch in term) and (p < 1) then 
begin 
25506 1: 
deletets,l,15: 
insert (ch,s,D); 
write(copy(s,p,l)) 


end; 
if (ch = #8) and (p >= length(s)) and (p > 0) then 
begin 
deletets,p,15: 
p ¿Sl 7 
gotoxy(i*p,7); write(^ “2? 
end; 
if (ch = #27) and keypressed then 
begin 


read(kbd,ch); 
if ch = kK “ then 


begin 
if p > O then 
bas bos id 
else 
beep 
end; 


17 (ch = “M and (p € length(s)) then 
pi:= p 1 
Lf (ch = 75357”? and íp < length(s)) then 
begin 
delete(s,p+t1,1); 
write(copy(s,ptl,l1),” 0 


end; 
154060 im LOHR a Poa then 
begin 
tc c= chr(100 + ord(ch)); 
p := 1 
end 
end 


end 
until (ch 


#13) or (p € 1), 


zi 


if ch = #13 then 
Ec. cech 
value := getvalue(s); 
n : 32 * length(s); 
it (value <= n) and (ch <> *H?) then 


begin 
beep; 
tc := RO; 
goto again 
end; 


adjuststr(s); 
textbackground(z); 
textcolor(x) 

end; (inputstr) 


(* action writes on the frame the current action *) 


procedure action(s : str40); 
begin 
textcolor (2); 
gotoxy (39,4); vwrite(conststr(” “,a402); 


gotoxy( 39,4); write(s); 
textcolor(x) 
end; 


procedure clearmessage; 
begin 

gotoxy(Z,12): write(conststr(” 22597 
end: 


(* message writes a string at the center of the frame +) 


procedure message(s : str8O); 
var 

i: integer; 
begin 


clearmessage; 
textbackground(O); 
textcolor(315: 


i :s trunc((80 - length(s))/2); 
gotoxy(i,12); write(copy(s,1,length(s))); 
beep; 


textbackground(z); 
textcolor(x) 
end: 


procedure clearselect; 
begin 

gotoxy( 2,23); vwrite(conststr? 7,539). 
end; 
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(* select writes the command line at the bottom of the 
frame and accepts the selection *) 
procedure select prompt : str80; 
term : chset; 
var tc : char Dus 
var 
ch : char; 


begin 
clearselect; 
textcolor(15); 
gotoxy (4,23); write(prompt); 
textbackground(30); 
gotoxy<(S+length(prompt),23)3; write’ 7); 
gotoxy(5S+length(promptò),23); 
textbackground(z): 
textcolor(x); 
repeat 
read(kbd,ch); 
tc :7» upcase(ch); 
if not (tc in term) then 
beep; 
until tc in term; 
write (tc) 
end; 


(* cleartext clears the work area of the frame *) 
procedure cleartext; 


var 
i : integer; 
begin 
dor i :- 10 to 21 do 
begin 
gOotoxy 2,1); 
write(conststr(^ *,78)) 
end 
end; 


procedure clearframe; 
var 
i: integer; 
begin 
mi s= 6 to 9 do 
begin 
gotoxv(2,1i25; 
write((conststr(^ *,78)) 
end; 
cleartext: 
clearselect; 
end; 


a3 


procedure clearproblem; 
begin 

gotoxy(13,4); write(conststr(^ *,8)) 
end; 


(* problemfieid writes the problem description in the 


problem area ofthe frame *) 
procedure problemfield(s : str8); 
begin 


clearproblem; 

textcolor(25: 

gotoxy (13,4); 

write(a); 

textcolor(x) 
end; 


(* funckey helps in using the cursor movement keys 


line-up,line down,and enter of the keyboard “) 
procedure funckey(ch : char; var i : integer); 
begin 
if ch » 8126 then 
ch 1s chrlord(ch?)- T00); 
if ch = 'P* then 
1 s= 1 1” 
ife ch E me then 
begin 
if i = 1 then 
beep 
else 
da al 
end: 
if ch = #13 then 
1 Ei 1 


(* availablespace returns the available spaceíbytes) 


of the logged drive. =) 
procedure spaceavailable( var totalbytes : real 2); 
type 
regrec = record { register pack Used in MSDos call } 
AX, BX, CX, DX, BP, SI, DI, DS, ES, Flags : integer 
end; 
var 
tracks, 
drive, 
bytes, 
sectors > integer; 
regs >: regrec; 
en "chars 
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procedure diskstatus( drive : integer; 


bytes, sectors : 

begin 

regs.AX :- S3600; 

regs.DX := Drive; 

MSDos( regs »; 

tracks := regs.BXx; 

bytes := regs.CX; 

sectors := regs.AX 
end: 
begin 

ah :- copy(dr,1,1»5; 

drive := ord(ch) - 64; 

diskstatus( drive, tracks, bytes, sectors 2: 


totalbytes := (( sectors * bytes * 1.0 ) * tracks ) 
end: 
procedure getdate( var date : strlo ); 
type 
regrec = record { register pack Used in MSDos call | 
SR, Ba, CX, DX, BP, SI, DI, DS, ES, Flags : integer: 
end: 
var 
regs : regrec; 
mmodd : string(21; 
yy : string[(4]; 
begin 
regs.ax := S2A shl 8: 
msdostregs): 
striregs.cx,yy): 
str(regs.dx mod 256,dd); 
str(regs.dx shr 8,mm); 
date := mm«^/*'«dd*^^/*'*yy 
end: 
(* putdate writes the date at the lower right corner 


of the frame 
procedure putdate; 
var 
date : 
begin 
textbackground(32); 
textcolor(0); 
getdate(date); 
gotoxy (68,23); Write(date); 
textbackground(z); 
textcolor cx) 
end: 


SEring[l09]: 


zə 


var tracks, 
integer ), 


( % HH HH H ÁH Á 096 Ë MMA MÁ KÁ A Á Á Á ÚU 96 ÚU ËA EXE EE XE XE XE EX EE X MEX XX XXX) 
Çə * ) 
C MENUS DSS * ) 
( * * ) 


( % H H H H H Á H ÁH ÁH ÁH Ú Ú H Ú Á Á Á 46 36 96 M HH HHH) 


overlay procedure mainmenu; 
begin 
clearframe: 
action(’MAIN MENU’); 
gotoxy(20, 7); 
write(’MAIN MENU OPTIONS:7’); 
Gotoxy (20, 1053: 
write (’l. HELP”); 
gotoxy (20,12); 
vrite(”2. UPDATE FILES OR CHANGE EROELEM 9); 
gotoxy (20,14); 
write(’3. RUN THE COST EFFECTIVENESS MT MODEL JD": 
gotoxy (20,16); 
write('4. SENSITIVITY ANALYSIS OF ALTERNATIVES’): 
gotoxy (20,18); 
writec’S. EXIT “TÜ” OS As 
end; 


Overlay procedure  dbasemenu; 
begin 
clearframe; 
action DATABASE) > 
gotoxy(26, 7); 
writec'DATABASE MENU OPTIONS:^'25: 
gotoxy (26,10); 
write(”1. HELP”); 
gotoxy (25,12): 
write(*2. CHANGE PROBLEM’); 
gotoxy (26,14); 
writet*3. DELETE CURRENT PROBLEM OS 
gotoxy (26,16); 
writet^d4. UPDATE EXPOSURE FILE’): 
gqotexvtz5.162: 
write(’S. UPDATE CONTROL FİLE 72 
gotoxy (26,20); 
write (’6. RETURN TO MAIN MENU’); 
end; 


SE 


overlay procedure  modelmenu; 
begin 
clearframe; 
action(’MODEL’); 
gotoxy (25, 7); 
ərite(” MODEL MENU OPTIONS:”), 
gotoxy (25,10); 
write(^'1. HELP”), 
gotoxy (25,12); 
write(/2. RUN THE WEIGHTED METHOD’); 
gotoxy (25,14); 
write (’3. RUN THE P.E.R.T METHOD): 
gotoxy(25,16); 
write(’q4. RUN THE RANKING METHOD”); 
gotoxy (25,18); 
 ite(C'5. RUN ALL THE METHODS’); 
dotoxy (25,20): 
write(^e. RETURN TO MAIN MENU”): 
end; 


overlay procedure sensanalmenu; 
begin 
clearframe; 
action. SENSITIVITY ANALYSIS); 
Jotoxy (28, 7); 
52 SENSITIVITY BSNALYSIS MENU OPTIONS:'2)5; 
motoxv (28,102); 
write(’1. HELP’); 
cotoxyC(28,12); 
vrite(”2. FIND CONTROL STRATEGY’); 
gotoxy (28,14); 
writet(^'3. GENERATE GRAPHICS’); 
gotoxy (28,16); 
writeí(^'4. PRINT REPORTS’): 
gotoxy (28,18); 
write( ‘5. RETURN TO MAIN MENU”); 
end: 
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overlay procedure xcontrolstrategynenu; 
begin 
clearframe: 
action(^SENSITIVITY ANALYSIS / CONTROL STRATEGY'); 
gotoxy (15, 7); 
write(*CONTROL STRATEGY MENU OPTIONS:”)>:; 
gotoxy (15,10); 
writet(^]. HELP’); 
gotoxy(15,13); 
write(^2. FIND THE MOST EFFECTIVE CONTROL: Sey 
gotoxy (15, 16); 
writel”3. FIND THE MOST COST EFFECTIVE COLNLU 
” SET DF 
gotoxy (lo, 1S) 
write (’4. RETURN TO SENSITIVITY ANALYSIS MENU”): 
end: 


overlay procedure  graphicsmenu; 
begin 
clearframe; 
action(“SENSITIVITY ANALYSIS / GRAPHICS’); 
gotoxy (2157); 
write(”*GRAPHICS MENU OPTIONS:?*)>; 
gotoxy (21,105); 
writec’l. HELP”): 
gocoxy €21, 13533 
write(^2. DRAW REPRESENTATIVE CURVES’); 
gotoxy (21,16); 
wvwrite(”3. DRAW REPRESENTATIVE HISTOGRAMS’); 
GOtoxy (zi lo: 
write (’4. RETURN TO SENSITIVITY ANALYSIS MENU’); 
end; 


overlay procedure  printmenu; 
begin 
Clearframe; 
action(” “SENSITIVITY ANALYSIS / PRINTIREPFPORTS >; 
gocoxv (19,727): 
write(’PRINT REPORTS MENU OPTIONS: '); 
Jotoxy( 19,10): 
ərite(”1. HELP”): 
qotoxyolo2715272: 
write(*2. PRINT EXPOSURE EXPECTED LOSS TABLE DE 
gotoxy(19,14%); 
write('^3. PRINT CONTROL EFFECTIVENESS TABLE”), 
gotoxy (19,16) 
write(’4. PRINT SET FILES’); 
gotoxy(19,18); 
write(’S. RETURN TO SENSITIVITY ANALYSIS MENU”): 
end; 


28 


(1 U U U M U UU U U M U U U M U M U U U M U U H Á U Ú H Á U Gb Gb Gb Gb U UK UMM MU KM KH UU UKM AH KHK) 
(əs * ) 
(ә BOR TATS DE 5x5 x ) 
(s e) 


( HUHHUHUHHHHHUHHUUHUHUHUHHUHUHUHUHUHHUHHUHUUUHHUHUHUHUHUUHUHHHHHHHHUHUHHKHHHHKHHKHÐR) 


(* makeframe writes the frame of the system along with 
the identification of each area * ) 
procedure makeframe; 
var 
i : integer; 
begin 
zgliracr: 
gotoxy(o 1,1) writetchr(201)3); 
gotoxy (80,1) write(chr(187)): 
gotoxy( 2,1): write(conststr(chr (205) ,78)) 
sətoxy(t 1,22: write(chr(1865)); 


ҹә ҹә 


ҹа 


gotoxy (80,2) write(chr(186)); 
goloxyC 1,3) write(chr(204)); 
gotoxy (80,3) write(chr(185));3 


write(conststr(chr(205),78)); 
write(chr(203)) 
write(chr(186)) 
write(chr(186)) 
gotoxy (80,4) əritetchr(186993 
gotoxy( 1,5) write(chr(204)) 
gotoxy (80,5); write(chr(185)) 
motoxyvi 2,92; writeiconststrichr(2052,78)52); 
gotoxyc25,95»5; write(chr(202)); 


gotoxy( 2,3) 
gsotoxy (25,3) 
gotoxy( 1,4) 
gotoxy (25,4) 


we vo vo VS we Ve və “Ə We `“ 
ҹә 


we we “6 we “6 


Tor 1 <= 6 to 21 do 
begin 
gotoxyC 1,15; write(chr(186)); 
SOLoxy (SO, i): write(chr(186)) 
end: 


gotoxv(o 1,22); write{(chr(204)); 

gotoxy (80,22); write(chr(185)): 

gotoxy( 2,22); write(conststr(chr(205),78)) 
IOLOXxXyY (59,22); write(chr(203)) 
gotoxyC 1,23); write(chr(186)) 
gotoxyv(55,23):; write(chr(186)) 
gotoxy (80,23) əritetchr(186293 
gotoxy( 1,24) write(chr(200)); 
gotoxy (80,24);  write(chr(1882)); 

gotoxy( 2,24); write(conststr(chr(205),78)): 
gotoxy (55,24); write{(chr(202)); 
textcolor(3); 


ҹә 


e veo Vo ҹә .. 


No vg 
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gotoxy(8,2); 
write(*EFFECTIVENESS OF CONTROL AND SECURITY OF’, 
^ COMPUTER SYSTEMS’); 
gotoxyt 4, 4); write(’ PROBLEM: ’); 
gotoxy(31, 4); writeCc’ACTION:’); 
gotoxy(58,23); write('Today Is:'5; textcolor(x) 
end; 


(* exposureform writes the field descriptions for the 
exposure record and one table which helps the user 
to fill the fields of the ranking method. It is 


used by the database for updatíng exposures. * ) 
procedure exposureform; 
begin 


clearframe, 

gotoxyt 3, 6); writec' Index: 5-2 

gotoxy (16, 6); əritet”Description:”): 
gotoxy (€ 5, 8); vritecC”VEIGHTED:”), 
gotoxy (15, 8); write(’Damage:S’); 
gotoxy (36, 8); write(’Probability:’); 
goötoxy( 53,10): write P E:R I: D; 
gotoxy(15,10); vritec Smallest:s”); 
gotoxy (36,10); vwrite(”Most Likely:s”); 
gotoxy (60,10); write(’Largest:S’); 
gotoxy( 5,12); write(”RANKS:?); 

gotoxy (15,12); vwrite('Rank P:”); 

gotoxy (36,12); write('Rank Q:^'2)5; 
textcolor(7);  gotoxy( 5,13); 
write(’Rank P Damage caused by error’); 
gotoxy (45,13); 

write(’Rank @ Damage caused by failure’); 
gotoxy( 8,14); 

write(”0 virtually impossible’); 
gotoxy (48,14); 

write(”0 negligible’); 

gotoxy( 8,15), 

ərite(”1 might happen once in 400O years”): 
gotoxy (48,15); 


writeCl”1 about 2109) 73 

gotoxy (18,16): 

writec^2 might happen once in 40 years”); 
gotoxy(48, 16); 

write(^2 about 21007)" 

gotoxy( 8,17); 

wvwrite(”3 might happen once in 4 years’); 
gotoxy (48,17); 

write (’3 about S170007. 


gotoxy( 8,18); 

write(’4 might happen once in 100 days”); 
gotoxy(48, 18); 

write(”74 about $10,000’): 


100 


gotoxy( 8,19); 
write(’S Might happen once in 10 days’); 
gotoxy (48,19); 


write(’S about. $100,000’ ); 
gotoxy( 8,20); 
write(^6 might happen once in 1 day’); 


gotoxy (48,20); 
write(*6 about ' $1,000,000"); 
gotoxy( 8,21); 
writec^7 might happen ten times a day’); 
gotoxy (48,21); 
write (’7 over $1,000,000’): 
textcolor(x) 
end; 


(* exposurefields gives in inversed video the fields 


to be filled for the exposure record * ) 
procedure exposurefields; 
begin 


gotoxy (9,65); writec” иә 
textbackaround(142; 
textcolor(0O); 
gotoxy (28, 6); write(conststr(^ 7,50)); 
gotoxy(23, 85; write(conststr(^ *,8)); 
gotoxy (48, 8); əritec”O. 70 
gotoxy(25,10); write(conststr(^ ^,8)) 
gotoxy (49,10); write(conststr(^ *,8)) 
gotoxy (69,10); write(conststr(^ *,8)) 
oto xy (22,12): writet(^ . DES 
gotoxy (43,12); write(” . 7 
textbackground(z); 
textcolor(x) 

end; 


ҹә ҹә ҹа 


(* controlform writes the field descriptions for the 
control record. The number of its fields depends on 
the number of exposures. It is used by the database 
for updating controls. * ) 

procedure controlform( var expno : integer); 

var 

i : integer; 
begin 
clearframe: 
gotoxy( 2, 7); əvritect”Index:”): 
gotoxy (16, 7); write(’Description:’): 
gotoxy (22, 825; write('Cost:s"'/): 
for i := 1 to expno do 
begin 
if i <= 12 then 
gotoxy(3,9+1) 
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else 
gotoxy(43,i-3); 
write(^Effectiveness on Exposure ^'/,i:2,':^") 
end; (of for) 
end; 


(* controlfields gives the fields to be filled 
for the control record in inversed video 
procedure controlfields(expno : integer); 
var 
i : integer; 
begin 
gotoxy (9,7); əritec” 07 
textbackground(14); 
textcolor(0); 
gotoxy (28, 7); write{(conststrt? 7,50)); 
gotoxy(28, 8); write(conststr(^ 7,83); 
for i := 1 to expno do 
begin 
if i <= 12 then 
gotoxy (33, 9+1) 
else 
Jgotoxy 073, 1-3), 
writel”0. “дик 
end; (of for) 
textbackground(z); 
textcolor (x) 
end; 
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* ) 


(KEL e e a M W RR Á M Á Á M 1 e Gb Ob Ob 6 06 M V) 


( * 
(ә 
( 
Ç x 
( * 


This is the database of the system and performs all 
the functions contained in the dbasemenu. 


DATABASE.DSS 


* ) 
* ) 
* ) 
* ) 
* ) 


( 3* Xx HH H HH HH H HH H HH H HH HH HH HH HH HH H H H H H H H HH H H H H H HH HH HH H HHRH H HH HHHH) 


overlay procedure database; 


label 
cancel: 

var 
ans * char? 
next > integer; 


(= 


overlay procedure makeproblem(s : str8); 


makeproblem creates the 
for each new problem and puts the problem description 


in the problem area of the frame. 


begin 


clearframe; 

problemfield(s); 
action(’NEW PROBLEM’); 
message(’CREATING 


delay(2000); 


end; 


(+ deleteproblem deletes all 
current problen, 
problem area and removes also the record 
that from the directory of the system. 


EXPOSURE 


makefile(filel,dr+s+’.dxp’,sizeof (expsr)); 
makeindex(indexl,dr*s*'.ixp'/,sizeof(expsr.index),0); 
closefiletfilel): 

closeindexC(index1): 
makefile(filel,dr+s+’.dcl’,sizeof(ctrl)): 
makeindexC(index1,dr+s+’.icl’,sizeof (ctrl.index),0): 
closefile(filel): 

closeindex(index1); 


overlay procedure deleteproblemtís : 
var 


i : integer; 


begin 


clearmessage; 
clearselect; 


action(’DELETING PROBLEM’): 


erase(fl): 


uasargn(fl;drtst'.dxp'5; 
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control and exposure tiles 


AND 


the files 
removes its description 


referred to the 
from the 
referred to 


EILE) 


assign(fl,dr+s+’.ixp°); 

erase(fl); 

assign fl,dr+sa+”".del 11: 

erase(fl); 

assign(fl,dr*s*^.icl^); 

erase(fl); 

openfile(filel,dr+s+’ .wdt’,sizeof(st)); 

if ok then 

begin 
closefile(filel); 
assign(fl,dr*s*'.wdt^') 
erase(fl); 
assign(fl,dr*s*'.wic^) 
erase(fl) 

end; 

openfile(filel,dr+s+’.pdt’,sizeof(st)); 

if ok then 

begin 
closefile(filel); 
assign(fl,dr+s+t”.pdt ); 
егазе(21): 
agssign(fl,dr*s*^.pic'/»; 
erase(fl) 

end; 

openfile(filel,dr+s+’.rdt’,sizeof(st)); 

if ok then 

begin 
closefile(filel); 
assign(fl,dr*s*'.rdt^') 
erase(fl): 
assign(fl,dr+s+’ .ric’); 
erase(fl) 

end; 


we 


ҹә 


ҹә 


(* delete the directory of the current drive if it 
does not contain onother problem * ) 

openfile(file2,dr+”*problem.dta”*,sizeof(problem)):; 

if usedrecs(file2> > 1 then 

begin 
initindex; 
openindex(index2,dr+’ problem.idx’,sizeof(cproblem),O); 
deletekey(index2,i,s); 
deleterec(file2,i):; 
closefile(file2); 
closeindex(index2) 

end 

else 

begin 
closefile(file2); 
assign(fl,dr+’ problem.dta’” ) 
erase(f12); 
assign(ifl,dr-*'problem.idx^'»; 


Ne 
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erase(fl) 
end: 
clearproblem 
end; 


(* updatecontrol adds, deletes, edits and scrolls 


the file of the controls data. x) 

overlay procedure  updatecontrol( cproblem : Str8à8; 
expno : integer ); 

label 

cancel: 
var 

nu,i,t : integer; 

idx .5eringl21: 

ans ; cher: 


(ә writecontrol vwrites the content of a control recora 


on the input/output control form. * ) 
procedure vwritecontrolcctrl : control; expno : integer): 
var 
i : integer; 
begin 


controlfieldstexpno): 
with ctrl do 
begin 
gotoxy (9, 7); write(index); 
textbackground (14); 
textcolort(0O); 
gotoxy (28, 7); write(description); 
gotoxy (28, 8); Wwrite(cost); 
for i :s 1 to expno do 
begin 
dr i <= 12 then 
gotoxy (33, 9.1) 
else 
3J40t0xXVY (7a, 1-4) 
write(effectíil) 
end 
end: 
textbackground(z): 
textcolortx) 
end; 


LOS 


IOcontrol reads input data from the screen. It is 


used for adding and editing controls. * ) 
procedure IOcontrol(var ctrl : control; 
ch . Char: 
expno : integer 2); 
var 
ES ə Char) 
i,j,n,ti : integer; 
tl > String f2i; 
t2 ə string[3]; 
s : Chset; 
begin 


fillchar(tl,sizeof(ti),0); 
tro “070: 
s = (#48..#571; 
n 2 * expno; 
tc ? dE: 
with ctrl do 
while tc «» “Y” do 
begin 
es 15 
case ch of 

“A” : begin 
fillchar(ctri,sizeort (crn. 0»: 
controlfields(expno); 
index := inttostr(usedreca(fileld+1); 
if length(index) = 1 then 
insert (’O’ ,index,; 17 
gotoxy (9,7); writeC(index) 

end: 

”E” : begin 
writecontrol(ctrl,expno); 
if next = 2 then 

1 := expno-*2 


епа 
end; (oí case) 
repeat 
case i Of 
1 : inputstr(descriptionj; o0; 2957 
(#32..#126),tc); 
2 : inputsetr(.cost,8; 25,5 ;© te ии 
3..14 : begin 
fillchar(t2,s1zeot (t2),O): 
t2 := Copyleffecttl1-21, 3,92: 
inputatr(t2,3,395,7+1, 3, e) 
end: 
15.226 ; begin 


fillchar(t2,sizeof (t2),O); 
t2 = Copyl(effect (1-21,3,9) 
inpütstr (t2,3, 79, 1 5138 e) 
end 
end; (of case) 
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if i» 2 then 
begin 
if (length(t2) < 3) and (length(t2) > 0) then 
for 3 := length(t2)+1 to 3 do 
insert( 0” ,t2,9)7 
effect[i-2] :s tl + t2 


end; 

ti 1 

funckey(tc,i»?; 

if (ti = i? and Cehr (ord Cee) — 100) <> 25250 then 


i 4 5x1 şk 
until i » n: 
select (‘15 RECORD CORRECTCY/N)? 17, 
[^Y^,^y^ ,^N^ ,^n'1,tc)5; 
clearselect 


end (of while) 


end; 


(* d 
i 

o 

s 

proc 
var 
i, 

ce 

Ed 


begi 
cl 
ir 
be 


en 
el 
be 


eletecontrol deletes the current control record, 
£ there are more than two controls in the file, 
n the screen and adjusts the index of all the 
uccessor records in the file. * ) 


edure  deletecontrol( s : str8; idx 2 tr2 9: 
born > integer; 
2 Cmar: 

x . strinG 217 
n e 
earframe: 

usedrecs(filel) = 2 then 
gin 


messageí(^sYSTEM REGUIRES 7 CONTROLS AMMETTO); 
wait 

d 

se 

gin 

message(/'/****** DELETING CONTROL IGNE ““:5““”?, 
deletekey(index1l,rn,idx): 

deleterec(filel,rn); 

t i= StrtoLntClidx): 


if t <= usedrecs(filel) then 

with) cttr do 

begin 
fillcharttdx,sizeof(tdx),025: 
tax ss imttostr(Ctr1): 
if length(tdx) = 1 then 

1nSert 0” ,tdx,12: 

findkey(indexl,rn,tdx): 
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repeat 
getrec(filel,rn,ctrl); 
t := strtointlindex) - 1; 
index := inttostr(t); 
if lengthCindex) = 1 then 
insert(”O”,index,15: 
puctrectfilel?çrn,cer10?” 
deletekeyfindexl,rn,tdx?: 
addkey(indexl,rn,index); 
nextkey(indexl,rn,tdx) 
until not ok; 
closeindex(indexl); 
initindex; 
openindex(index1,cproblem+t’.icl’,sizeof(C(index),0) 
end (of if/with) 
end (of else) 
end; 


begin (of updatecontrol) 
controlform(expno); 
initindex; 
openfile(filel,dr+cproblem+’.dcl’,sizeofctrl)); 
openindex(C(indexl,dr+cproblem+’.icl’,sizeof(ctrl.index),0); 
fillchar(idx,sizeof(idx),0O): 
fillcharctetrl ,Sizeor (eer, 07; 
clearkey(indexl); 
if next <> 1 then 
begin 
nextkey (indexl,rn,idx); 
if ok then 
begin 
getrec(filel,rn,ctril); 
writecontrol(ctrl,expno) 


end 

else goto cancel 
end; 
ans = ^ “; 


with ctrl do 
while ans «» 'Q^ do 
begin 
action(’UPDATE CONTROLS’): 
if next = 2 then 
ans *= ^R 


else 

begin 
flag := false; 
if musedrecs(filel) >= 2 then 
begin 


Select(’AIdd, Delete, Edit, Nroext, Previous ‘7, 
“or Qduit:i’,(° A’ DE CU a ans» 
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clearselect 
end 
else 
ans (= “A? 
end; 
case ans of 
“A” : begin 
action(”ADD CONTROL 7”), 
if usedrecs(filei) = maxctrl then 
begin 
clearframe; 
message(^ THE SYSTEM CANNOT HOLD ANOTHER”, 
CONTROL): 
wait; 
goto cancel 
end; 
TIOcontrol«Cctrl,'A ,expno)y; 
addrec(filel,rn,ctrl): 
addkey Cindexl,rn, index); 
idx i= index; 
findkey Cindexi,rn,idx) 
end: 
^D^ : begin 
action(’ DELETE G@NTROL ’): 
deletecontrol(cproblem,idx); 
controlform(expno); 
i $= strtcofntctidx?” 
clearkey (indexi); 
if i <= usedrecs(filel) then 
findkeyCindexl,rn,idx) 


else 
repeat 
nextkey(indexl,rn,idx) 
until ok 
end; 
“E” begin 
action EDIT CONTROL); 
getrec(ftilel,rn,ctrl): 
lOControbtoctrl B .e*pno»: 
putrec(filel,rn,ctrl) 
end: 
“N’% : repeat 


nextkey (indexi,rn,1dx) 
until Ok; 
^P^ : repeat 
prevkeytindexi,rn,idx) 
until ok 
end; {of case} 
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if “ais in ED İN o ẸRI then 
begin 
getrec(filel,rn,ctrl); 
writecontrol:(ctrl,expno) 
end: 


if next = 2 then 

begin 
nextkey(indexl,rn,idX); 
if not ok then 
begin 


end: (of with/while) 
cancel: closefile(filel): 
closeindexC(indexl):; 


end: 


(* updatexposure adds, deletes, edits 
the file of the exposures data. 


overlay procedure updatexposuret 
var 

label 

cancel; 
var 

rn ır : integer; 

idx ; SEring [21 

ans ; char; 


(#  writexposure writes the content of an exposure record 


and scrolls 


expno 


on the  input/output exposure form. 
procedure writexposure(expsr : exposure); 


begin 

exposurefields: 

with expsr do 

beqin 
gotoxy (3, 62; əritetindex?: 
textbackground(14); 
textcolor(0): 
gotoxy(28, 6) 
gotoxy(23, 8) 
gotoxy (48, 8) 
gotoxy (25,10) 
gotoxy (49,10) 
qotoxy(697,10) 


write(description) 
əritetdamaqe): 
ərıtetprobabılıty) 
əritetsmallest): 
write(mostlikely); 
write(largest); 


`B va ҹә co “Ə ҹә 
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Ld 


* ) 


cproblem : ser — 


integer 


); 


x) 


en 
te 
te 
end; 


51 
u 
proc 
var 
EC 


wi 
wh 
be 


gotoxy(22,125; write(rankP); 
gotoxy (43,12); write(rankQ?) 
d; (of with) 
xtbackground<Cz); 

xtcolortx) 


Oexposure reads input data from the screen. It is 
sed for adding and editing exposures. * ) 
edure  IOexposure(var  expsr : exposure; ch “"cuar?” 


char; 
string[1) 
stringt(3) 
integer; 


co eo 3 ee 
we ve 


th expsr do 


ile te y do 
gin 
mS 18 


case ch of 
“A” : begin 
fillchar(expsr,sizeof (expsr),0); 
exposurefields; 
index := inttostr(usedrecs(filel)+1); 
if lengthCindex) = 1 then 
insert('O^,index,12)5; 
gotoxy (9,6); writeCindex) 
end; 
“E? : writexposure(expsr?); 
end; (of case) 


repeat 


case i of 
l : ippuccrr cesaerieren. ov 20/671232..21201.tc??: 


2 : inputstr(damage,8,23,8, [#48..#57]),tc); 
3 : begin 
ftillcnar t2, 517001 CEb29.0)* 
t2 := copy(probability,3,3); 
inputstrttz/:2:720,6, (468..8F5/71.tc): 
it Clength(t2) < 3) and (Clength(t2) > O) then 


Lom ees) Lengemce 2) +1 to 3 do 
insert('O^,t2,)73); 
probability ?:= 70,” + t2: 
end; 


3 ; inputstrismallest,8,25,10,1(848..8571,tc?, 
Ð : inputstr(mostlikely,8,49,10,[#48..#57],tc); 


. inputstrilargest,8,69,10, (848..85/1,tc?, 
> begin 
fillchar(t1,sizeof(t1),0): 
fillcher(t2,sSsizootot2550» 
t1 :7- copy(rankP,1,1»5; 
t2 i7 copy(rankbp,; 353» 
inputstrtí(t1,1,22, 12, #48. ee) 
inputstr(t2,3,24,12, (#48. .#57],tc); 
if (length(t2) < 3) and (lengthí(t2) > 0) then 
for jJ := length(t2)+1 to 3 do 
insert( O' ,t2,)J9)55 
rankP is tile. 2 EZ 
end; 
8 : begin 
filleharcel], sizeor (el. o>: 
tilichar(Ctz,sizecorr > 0. 
61 := copyírankQ, 1,1): 
t2 i= copy(ranka,3,32)5; 
inputstr(t1,1,43,12, (#48. .#571],tc); 
inputstr(ttZ,s,422.,12:/1742::7271726t€”” 
ır (length(t2) < 3) and (length(t2) > O) then 


“o 


for | “= LEnNGEnNCEZ Sl to 3 do 
insert 055 D 
rank sti € <2 
end 


end; (of case) 


ti 2 = bi: 

funckey(tc,i),; 

16 GET = 1) and Cehnr Cora CLE) —100) “<> “He? then 
dei mear 1 


until i > 8: 


select((^l5 RECORD GORKEGTI YN Ár 
FAN SE e ma 566): 
clearselect 
end: (of while) 
end; 


LEZ 


(* d 
o 


in the exposure file and adyusts the 
opens the control 


eletexposure  deletes the 


current control record 
n the screen, if there are more than two exposures 


index 


: idx 


af ci 1 


* ) 
i SCr2 ) 


the successor records. Then it 
file and removes from all the control records the 
reference to the deleted exposure. 
procedure deletexposure( cproblem : str8 
var 
i,rn,usdr, 
t,recno > integer; 
EC ə Char? 
tdx > stringl2]; 
begin 
clearframe; 
usdr := usedrecs(filel): 
if usdr = 2 then 
begin 


en 
el 
be 


message(’SYSTEM REQUIRES 
wait l 
d 
se 
gin 
message('/***«**«*« DELETING 
deletekeyC(indexl,rn,idx); 
deleterec(filei,rn): 
secno .- strtointoidx): 
usdr i= usedrecs(filel?: 
if  recno <= usdr then 
with  expsr do 
begin 
Tifichar tx,sızeu£(tdx””. 
tax = 'tnttostrrecno+l): 
if lengthítdx) = 1 then 
insertl( O ,tdx,.l): 
findkey(indexl,rn,tdx):;: 
repeat 
getrec(tilel,rn,expsr); 
t i= strtoint(í(index) - 
index := inttostr(t): 
if Ú length(index) = 1 
insert(”O',index,1): 
putrec(filel,rn,expsr); 
deletekey (indexi,rn,tdx 
addkey(Cindexl,rn, index) 
nextkey (indexl,rn,tdx) 
until not ok 
end: (of if/with) 
closefile<(filel): 
closeindex(index12): 


2 EXPOSURES 


EXPOSURE 


DP 


a 


then 


2. 


a 
á 


AT 


e ari 


BREAST 


LENA”) 


. 
r, 


r 


witnwrctrl do 
begin 
initindex; 
openfile(filel,dr+cproblem+’.dcl’,sizeof(ctrl)); 
openindex(index1,dr+cproblem+t’.icl’,sizeofC(index),0); 
clearkey(indexl); 
repeat 
nextkey(indexl,rn,tdx»5; 
if ok then 
begin 
getreetftilel, rn, ctrl: 
for i 2 recno to usdr do 
begin 
effect[i) := effectí[i*11; 
end; (of for] 
fillcharteffecCtir:”li? 057 
putrec(filelorn,ctrl»- 
end 
unto not ok; 
closefile(filel): 
closeindexC(indexl) 
end: (of with} 
initindex: 
openfile(filel,dr+cproblem+»’.dxp’,sizeof(expsr)); 
openindexCindexl,dr+cproblem+’ .ixp’, 
sizeoftexpsr.index),0), 
end (of else) 
end; 


begin ¿Of updatexposure) 
exposureform; 
initindex: 
openfile(filel,dr*cproblem-*.dxp',sizeof(Ciexpsr?5; 
expno := usedrecs(filel); 
Openindex(indexl,dr*cproblem-*^.ixp', 
sizeof (expsr.index),0); 
fillchar(idx,sizeotf(Cidx),0): 
fillchar(expsr,sizeof(expsr),0); 
clearkey(index12); 
if next <> 1 then 
beain 
nextkeyC(indexl,rn,idx); 
if ok then 
begin 
getrec(filel,rn,expsr):; 
əritexposuretexpsr) 


end 

else goto cancel 
end: 
ans i= © ^": 
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with  expsr do 
while ans €? ”Q” do 
begin 
action(”UPDATE EXPOSURES'); 
if usedrecs(filel) >= 2 then 
begin 
select(”A)dd, D)elete, E)dit, N)ext, P)revious /, 
Ko emt: Lo Ar) DESPUES IN >») PF RR cJ ans); 


clearselect 
end 
else 

ans :z A”: 


case ans of 
”A” : begin 
action(’ADD EXPOSURE’); 
if usedrecs(filel) = maxexp then 
begin 
cleartrame: 
message(? THE SYSTEM CANNOT HOLD ANOTHER ”, 
TEXPOSÚRE “23; 
wait; 
goto cancel 
end; 
IOexposure(expsr,'/A^')5; 
addrec(filel,rn,expsr); 
addkey(indexl,rn,index); 


idx := index; 
findkey Cindexi,rn,idx) 
end; 


^D' : begin 
actiont*DELETE EXPOSURE”): 
deletexposure(cproblem,idx); 
exposureform; | 
i := strtoint‘’idx); 
clearkey(index1); 
if i <= usedrecs(filel) then 
findkey Cindexi,rn,idx) 
else 
repeat 
nextkey (index1,rn,1dx) 
until ok 
end; 
begin 
action(’EDIT EXPOSURE’): 
getrec(filel,rn,expsr): 
IOexposure(expsr,'E^); 
putrec(filel,rn,expsr) 
end; 
“N’ : repeat 
nextkey(ındexl,rn,idx) 
until ok: 


ZE” 


^P^ : repeat 
prevkey (indexi,rn,idx) 
until ok 
end; {of case} 


if Cans in t”D”, “N”7 EP 7 then 
begin 
getrecí(filel,rn,expsr); 
writexposure(expsr) 
end (of if) 


end; (of with/while) 
t := usedrecs(filel): 
if expno € t then 
begin 
expno :7 t; 
next := 2 
end 
else 
next := O; 
expno := t; 
cancel: closefile(filel); 
closeindextindex1); 
end: 


(* get directory asks the user to define the drive he/she 
wants to use, writes directory in the work area and 


asks for a problem description. * ) 
overlay procedure getdirectory; 
label 

cancel; 
var 

i, J, number : integer: 

tby - real; 

en 2 Char? 

idx ` vstring [21 
begin 


clearproblem: 

clearframe; 

message(’DEFINE THE DRIVE YOU WANT TO USE FOR FILES”); 
gotoxy(16,16); 

writetC'IT IS BETTER THE DSS TO BE ON 2701566 TOREN EH 
gotoxy(16,18) 

write “DO NOT USE THE LETTER C LE THERE T3 NO HARD DISK RE 
Select (DRIVE A,B,C,D,E or F:°,[#65..#70,#97..#102),ch)>: 
fillchar(dr;,s1zeæof (dr 0)" 

dro chWwWt 1x 

clearirame: 

actroncC DEİKLESOST0E£77777 


ҹә 


openfile(filel,dr-*'problem.dta^,sizeof(problem)2); 
if ok then 
begin 
initindex?; 
openindex(indexl,dr*'problem.idx', 
sizeof(problem.problemname),0); 
clearkey(Cindex1); 
i = 10; 
ј := 1, 
gotoxy (127,7); 
write(’CHOOSE ONE OF THE FOLLOWING OR CREATE YOUR “, 
“OWN PROBLEM’); 
textbackground(14); 
textcolor(0); 
gotoxy( 15,9); 
Write PROBLEM: “2; 
gotoxy (27,9); 
write (*CREATED BY: “2; 
goloxy (56,9): 
write(”DATE:'); 
textbackground(z); 
textcolor(x); 
nextkey(indexl,number,problem.problemname); 


repeat 
getrec(filel,number,problem); 
gotoxy(15,i); write(problem.problemname?; 
gotoxy 27,i); write(problem.creator); 
gotoxy(56,i); write(problem.date); 
e : 01”: 
DESF J + l; ! 
if (1 > 20) and (usedrecs(tilel) > jJ) then 
begin 
Tn. 10: 
vait: 
cleartext 
end: 
nextkey (indexl,number,problem.problemname) 
until not ok, 
gotoxy (21,21); 
textbackground(3); 
textcolor(0); 
write(^Number of Problems in the Directory: “, 
usedrecs(filel):2); 
textbackground(z); 
textcolor(x); 
closefile(filel): 
сјозејпаех(1паех1) 
епа 
else 
begin 
spaceavailablectby); 


TE” 


if tby < 30000.0 then 


begin 
message(’THERE 15 NOT ENOUGH 
wait; 
next := 3; 
goto cancel 
end: 


SPACE ON DRIVE 


message(’**ssxx NEW DIRECTORY sususu”); 
makefile(fileil,dr-*'problem.dta',sizeof(problem?2); 


makeindextindexl,dr-”problem.idx”, 


sizeof(problem.problemname?,0): 


closefiletfilel?: 
closeindex(index1); 
end; 
initindex; 


openfile(filel,dr-*'problem.dta^,sizeof(problem?); 


openindexCindexl,dr+’problem.idx’, 


sizeof (problem.problemname) ,O); 


action(’GIVE PROBLEM NAME”); 
gotoxy(4,23); 


əvrite(”ENTER THE NAME OF THE PROBLEM:”), 
fillchar(cproblem,sizeof(cproblem»,02); 


fillchar(problem, sizeof (problem) ,O); 


inputstrícproblen,8,35,23, [#48..#%1261]1,tc); 


cproblem := upcasestr(cproblem); 
adjuststr(cproblem); 
findkeyCindexl,number,cproblem); 
if not ok then 
begin 
spaceavailablettby); 
if tby € 10000.0 then 
begin 
closefile(filel): 
closeindexCindexl): 
clearfranme: 


message(”* THERE IS NOT ENOUGH SPACE ÜN 


wait; 

next := 3: 

goto cancel 
end; 


clearselect: 


gotoxyt4,23): writec“ENTER YOUR NAME: “2; 


inputstríproblen.creator,25,21,23, [#32..#1261,.,.tc); 


problem.problemname :- cproblem; 


DRIVE 


problem.creator :£ upcasestrtproblem.creator?, 


getdate(problem.date); 
number := O; 
addrec(filel,number, problem); 


addkey(indexl,number, problem. problemname) ; 


closefile(file125; 
closeindex(index12); 
expno := O; 
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“ey > 


“+ ADN 


next := 1; 
end 
else 
(+ get key information about the latest model execution *) 
with problem do 


begin 

getrec(filel,number,problem); 
vcombindex := wcomb; 

pcombindex ‘= pcomb; 

rcombindex := rcomb: 

wtotalcost :- strtoreal(wtotcost»; 
ptotalcost := strtoreal(ptotcost): 
rtotalcost := strtoreal(rtotcost);: 


closefiletfilel): 
closeindexCtindex1): 
openfiletfilel,dr-cproblem-”.dxp” ,sizeoftexpsr)),: 
expno := usedrecs(filel); 
closefile(filel); 
problemfield(cproblem) 

end; 

cancel: 

end; 


BEGIN (OF DATABASE) 
ans i= ^ ^: 
if flag then 
begin 
getdirectory; 
if next = 1 then 
begin 
makeproblem(cproblem); 
updatexposuretcproblem,expno?: 
next :s 1; 
updatecontroltcproblem,expno) 
end: 
if next €? 3 then 
flag := false; 
next := O; 
goto cancel 
end; 


while ans <> “6” do 
begin 
dbasemenu; 
serce” SELECT 1,2,3,4,9 or 6 3°7,(°71’..°6’)],ans): 
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case ans OÍ 
“1” “3 heim D 5 
“2” :begin 


getdirectory; 
if next = 1 then 
begin 


makeproblem(icproblem); 
updatexposure(cproblem,expno); 
next := 1; 
updatecontrol(cproblem,expno?); 
next := O 
end 
end; 
“3” : begin 
clearframe; 
rnessaget*DO YOU WISH TO DELETE THE PROBLEM? OF 
select(’TYPE (11 TO DELETE OR ANY KEY TO ', 
“CANCEL” ,(981..89126),ans?: 
if ans = °!’ then 
begin 
deleteproblem(cproblem); 
flag := true; 


next := O; 
goto cancel 
end; 
ans = ” ” 
end; 


“ad” 1 begin 
updatexposuretcproblem,expno?: 
if next = 2 then 


begin 
updatecontrol(cproblem,expno); 
next :- O 
end 
end; 


^9^ : updatecontrol(cproblem,expno? 
end (of case) 
end; (of while) 
cancel: 
END; 
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(e 


MODEL.DSS 


This is the model execution part of the system. The 
user can select one or more statistical methods for 
the model run. 


* ) 
* ) 
* ) 
* ) 
e) 
* ) 
e) 


Ú 2 2 €» Eb b bb b b b b e b b e) 


overlay procedure model; 
label 
cancel,cont; 


var 


ans,tans,ch 
flagi,flag2 


m 


expdam 


i 


char; 

boolean: 

string [2]; 
array[1..maxexp] of real; 
integer; 


ethod 


LDrn,ctrlno 


idx string[2)]; 
maximum stringt101, 
benefit, 

n vt : real; 


Çox 


weightedprobability computes the expected cost for 


each exposure of the exposure file. * ) 
overlay procedure  weightedprobability; 
begin 

initindex; 


openfile(filel,dr+cproblem+’.dxp’,sizeof(expsr)) 


ҹа 


openindex(index1l,dr+tcproblem+”.ixp, 


sizeot(expsr.index),0); 


clearkey(index12); 
fillchartexpdam,sizeof(expdam),0), 
fillchartexpsr,sizeof(expsr),0): 
totaloss := O; 

with expsr do 

repeat 


nextkeydtindexl,rn,idx): 
if ok then 
begin 
getrec(filel,rn,expsr); 
1 ‘= strtointdtindex): 
expdam[(i] := strtoreal(damage) = 
strtoreal(probability); 
totaloss := totaloss + ехраат(1Ј: 
end 


until not ok; 


Tel 


closefiletfilel): 
closeindex(index12) 
end; 


(* pertmethod computes the expected cost for each exposure 


of the exposure file, using the P.E.R.T. method * ) 
Overlay procedure  pertmethod; 
begin 


fillchar(expsr,sizeof (expsr),0); 
initindex; 
openfile(filel,dr+t+tcproblem+t’ .dxp’,sizeoftexpsr)); 
openindex(indexl,dr+cproblem+’ .ixp’, 

sizeof (expsr.index),0); 
fillchartexpdam,sizeoftexpdam?,05: 
clearkey(index1); 


totaloss := 0; 
with  expsr do 
repeat 


nextkey (indexl,rn,idx); 
if ok then 


begin 
getrec(filel,rn,expsr); 
i := strtointíindex)s 
expdam[i] := (strtoreal(smallest) + 
4 * strtoreal(mostlikely) 
+ strtoreal(largestò)) / 6; 
totaloss :- totaloss * expdamtíil 
end 


until not ok; 

closefile(filel); 

closeindex(indexl) 
end; 


(* rankingmethod computes the expected cost for each 
exposure of the exposure file, using the Ranking 
method. * ) 

Overlay procedure rankingmethod; 

begin 

initindex; 

openfile(filel,dr+cproblem+’.dxp’,sizeof(expsr)); 

openindex(indexl,dr+cproblem+’.ixp’, 
sizeof(expsr.index),0); 

clearkey(index12); 

fillchar(expdam,sizeof(expdam?),02); 

fillchar(expsr,sizeof(expsr)?,0); 

totaloss :- O; 

yo. = m op 
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with  expsr do 

repeat 
nextkey (indexl,rn,idx); 
if ok then 


begin 
getrec(filel,rn,expsr); 
uis y = (strtoreal(rankP) + strtorealtrankQ) - 3); 
i ¿= strtointíindex):; 


expdamlil := exptu) / 4.0; 
totaloss := totaloss * expdamíi) 
end 
until not ok; 
closefile(filel): 
closeindex(index12) 
end; 


(* effectivecontrol computes the effectiveness for each 
control activity in the control file. If the control 
is an effective one then it is loaded in memory for 


subsequent computation. x 
overlay procedure effectivecontrol; 
begin 


initindex; 
openfile(filel,dr*cproblem*^.dcl^,sizeofíctr12)); 
openindextindexl,dr-cproblems”.icl”,sizeof(ctrl.index),0),: 
Clearkey(indexl); . 

2 1chartctrlmatrıx,sizeoftctrlmatrıx?,0): 

25 ichar(tcetrl,sizeo£f(ctr13,09, 
fillchar(comb,sizeof(comb),0); 


ctrlno .—.07 
totalcost :- O: 
with ctrl do 
repeat 


nextkey (indexl,rn,1dx); 
if ok then 


begin 
benefit 2— 07 
getrec(filel,rn,ctrl); 
for i := 1 to expno do 
benefit := benefit + strtoreal(effectl(i)]) = 


expdamíil:; 


if benefit > strtoreal (cost) then 


begin 
curimos-cürlno + 
Gthrimatrix[ctrinojM.= ctri- 
totalcost >= totalcost + strtoreal(cost): 
comblctrlnol := index 

end 

else 

begin 


message(’CONTROL *+ copyídescription,i, 
length(description))+’ IS NOT ÆFFECTIVE TE 
delay (2000); 
clearmessage 
end 
and 

until not ok: 

closefile(filel); 

closeindex(index12); 

end; 


(* controlsets generate all the possible control sets 
and updates the problem record in the directory of 
the system. It has the ability also to create and 


delete the set files. * ) 
overlay procedure controlsets(maxcost : real); 
label 

cancel: 
var 


integer; 


l,j,k,l,maxcomb,bDb5n 
cost,value,seff,tby, 
filebytes,indexbytes : real; 

combination : arrayl1l..maxctrl] of char; 


(+ binary converts a decimal number to its binary 
representation. Its purpose is to generate the 


combinations of the control activities. * ) 
procedure  binary(k : integer); 
var 

7 > integer; 
begin 

for J s= I to ctrino de 

begin 


if k mod 2 <> O then 
combination[j3J) := 71” 
else 
combinationíjJ) := 'O'; 
Kk := k div 2 
end (of for 
end: 


begin 
maxcomb := round(exp(ln(2) * ctrino)) - l; 


(= computed the size in bytes of the set file =) 
filebytes ‘= (sizeof(st) * 1.0) € maxcomb: 


indexbytes := (((sizeof(st.Ck) + 3)* (order+3) « 1.0) = 
maxcomb)/order: 


(* ask the available bytes of the specified drive *) 
spaceavallable(tby); 
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if tby < (filebytes+indexbytes) then 
begin 
message(’THERE 15 NOT ENOUGH SPACE ON DRIVE’ +dr); 
flag2 := true; 
goto cancel 
end; 
textbackground(3); 
initindex; 
makefile(filel,dr+cproblem+’.’+method+’dt’,sizeof(st)); 
makeindexCindexl,drtcproblem+’.’+method+’ic’, 
sisxeoftf(st.CkK),1)2; 
p := O0; 
with st do 
for i :- 1 
begin 
fillchar(st,sizeof(st),0); 
fillchar(combination,sizeof (combination) ,0); 
binary(i); 
cost := 0.03 
sor; <= 1 to ctriño do 
if  combinationíj3) = *1” then 
cost i= cost * atrtoreal(ctrimatrTx[jJ.cost)?; 
if  maxcost »- cost then 


to maxcomb do 


begin 

value := 0.0; 

for 3 := 1 to expno do 

begin 
seff :s O.O; 
for MAIS |. teo ctrino do 
if combination(fljJ = “1” then 

seff := seff + (1 - seff) s 


strtoreal(ctrlimatrix[ll).eftftfect([J3J); 
value :s value * seff * expdamíjJ 
end: (of för 39 


(əv Keep only the effective control sets x) 
if value » cost then 


begin 
ins =) OF 
fog ga is 1 to ctrino do 
if combination[í3] s “1” then 
begin 
ass bead; 
setcombll) := ctrimatrix[jJ.index 
end; 
p-pitfi; 
getoxy (231,21); vritet”Number of uots .p:42, 


strivalue:10:0,Vk?, 

str{((totaloss - value):10:0,Lk): 
atrúcost:10:0,CK): 

str ( (value - cost):10:O,Nk); 

SEX totLaloss - value + cost):10:0,TCk) ; 
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str((value / cost):5:4,BCR); 


If 


end 
end 


strtoreal(BCR) « 10.0 then 


insert(^ ”,BCOR,15: 
addrec(filei,rn,st); 
addkey(indexl,rn,Ck); 


end; (of for i) 
gotoxy (31,21); write(conststr(’ *,20));5 
if usedrecs(filel) = O then 


begin 


closefile(filel); 

closeindexCindexl): 
assign(fl,dr+cproblem+t’.’+method+’dt’); 
erase(fl); 
assign(fl,dr+cproblem+’.’+method+’i1c’); 
erase(fl) 


end 
else 
begin 


closetile(filel): 

closeindex(index1); 

if totalcost ә maxcost then 
totalcost := maxcost: 


case method o£ 
^w^ £ begin 
wcombindex *= Comb: 
problem.wcomb := comb; 
wtotalcost :- totalcost; 
str(totalcost:10:0,problem.wtotcost) 
adjuststr(problem.wtotcost) 
end; 
^p^ : begin 
pcombindex >= comb; 
problem.pcomb := comb; 
ptotalcost := totalcost: 
str(totalcost:10:0,problem.ptotcost) 
adjuststr(problem.ptotcost) 
end: 
“e” «Begin 
rcombindex >= comb; 
problem.rcomb := comb; 
rtotalcost 1= totalcost; 


str(totalcost:10:0,problem.rtotcost) 
adjuststr(problem.rtotcost) 
end 


end; (of case) 
opənfilətfilel,dr-” problem.dta” sizeoftproblem?)) 
openindex(indexl,dr+t+’ problem.idx’, 


» 


sizeof (problem.problemname) ,O) 


findkey (indexl,rn,cproblem); 
putrec(filel,rn,problem»: 
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r 


closefile(filel); 

closeindex(index1) 

end; i 
cancel: textbackground(z) 

end; 


BEGIN (OF MODEL) 


ans : "nə 
flagi := false; 
while ans <> “6” do 
begin 
if not flagl then 
begin 


modelmenu; 

5BSeleck (4 ELEC TN, 2,3,% 732 Or 6 mu Ii 6  J ans): 
clearframe: 

tans :s ans 


end; 
if ans = 5 then 
begin 
flagl :- true; 
ans >= Os 
tans := “2” 
end; 
ch := 80: 


case tans of 
31: rep DO"): 
“2” 1 begin 
method := 'w^': 
action(^MODEL / WEIGHTED METHOD’): 
end; 
begin 
method := ’p’; 
action. MODEL /P.E.R.T. METHOD’); 
end; 
”4” : begin 
method := *'r^'; 
action( ‘MODEL / RANKING METHOD”); 
flagl := false 
end; 
^6€^ : goto cancel 
end; (of case} 
rw tans in (72*.. 5] then 
begin 
openfile(filel,dr+cproblem+’.’+method+’dt’, 
sizeof(st)); 


ə.” 


if ok then 
begin 
closefile(filel); 
message THERE IS ALREADY FILE FOR THAT METHOD’); 
select(/SELECT D)elete, H»un or any key to cancel:', 
(41. .91261,ch»; 
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clearmessage; 


clearaelect; 
end; 
if ch in Ic KU) then 
begin 
if ch in Bb Ro then 
begin 


assign(fl,dr*cproblem*^."'*method-*'dt^'»; 
erase(fl); 
assign(fl,dr+cproblem+’.’+method+’ic’); 
erase(fl) 

end; 

if ch = “D” then 
Goro conti 

case tans of 


72° : weightedprobability; 
“3” 1 pertmethod; 
“4” : rankingmethod 

end; 


effectivecontrol; 
if totalcost < 1.0 then 
begin 
message(^CANNOT COMPUTE SETS WITHOUT EFFECTIVE “, 
^ CONTROLS^»; 
wait; 
goto cont 
end; 
if ctrlno = 1 then 
begin 
message(’CANNOT COMPUTE SETS WITH ONLY ONE “, 
EFFECTIVE CONTROC DE 
wait; 
goto cont 
end; 
if totaloss > totalcost then 
t i= totalcost 
else 
t :» totaloss: 
gotoxy (20, 8); 
write(’Total Damage Due To Exposures Ju 
totaloss: 105008 
gGotoxy (20,10) 7 
write(”Cost to Implement All Controls :', 
totalcost 10 056 
gotoxy(13,14); 
write(’Give The Maximum Amount You Want To “, 

“Spend On Controls’); 
qotoxy 02927355 write('or press Enter ter ALE” 
gotoxy (30,17): write MAXIMUM : 5); 
str(t:10:0,maximum); 
adjzuststr (maximum); 
inputstrimaximun,210,82,1/. 1. 0 777777 
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clearframe; 
measage(^PLEASE WAIT’); 
controlsets(strtoreal(maximum)); 
if flag2 then 
begin 
flag2 := false; 
goto cont 
end; 
clearmessage 
end 
end; 
cont: if flagi then 
begin 
tans := chrtord(tans)+1); 
clearmessage 
end 
end; (of while) 
cancel: 
END: 
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622222222222.22222.22.2222.2.222222.2.2222222222222222222222222.22 
(əs * ) 
( * SENSANAL.DSS x) 
( * e) 
(€ This is the sensitivity analysis part of the system. x) 
(€ It consists of procedures for control strategy s“) 
(€ selection, graphics and report printouts. * ) 
( * * ) 


Ú H U H H H Á W H H H H H A H H A Á b O Ó Á Ó Ó 6 A A A A A A A A A A A A A A A O A A H 96 96 A Á A A A A A A A 3€) 


overlay procedure sensitivityanalysis; 
var 
a,b : plotarray; 
1,7],k,rhygctrinos 
maxNKrn,maxBCRrn : integer; 


maxNk,maxBCR, 
low,high,key = stringil01” 
idx . Sstringtzi” 


ans,method,tc char: 


(* inputlimits prompts the user to give the desired cost 


range within which the set files will be searched. * ) 
procedure inputlimits; 
begin 


clearframe; 
case method of 
^^ : totalcost :- wtotalcost;j 
7P” ? totalcost := ptotalcost; 
*R4*.  totalcost is rtotalcost 
end; Å 
сТеагКеу(јпаех2): 
nextkey(index2,rn,key); 
getrec(file2,rn,st); 
adjuststr(st.Nk); 
adjuststr(st.TCk»; 


totaloss := strtoreal(st.Nk? + strtorsal(st.TCk); 

Jotoxy (19,7) 

write(*Total Damage Due To Exposures :',totaloss:]O:05»E 
gotoxy (19,99); 

write(^Maximum Cost in the Set File <* ,totalcost: 1070 


gotoxy(12,15); 
write(^Give the Cost Range over which the Search will be 
done: “); 
gotoxy (29,17); write(’Low Limit: 
gotoxy (29,19): write High Cini S: 
repeat 
fillchar(low,10,0): 
fillchartchugh,j 1070) 


Ss) 
5”) 


we “s 
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textbackground (14); 
textcolor (0); 
gotoxy(44,17); write(conststr(^ *,10)); 
gotoxy(44,19); əritetconststr(” ”,10)), 
dluputstr 1:7) 10.44,17,1f”0”..”9”1,tc?): 
VnpuEtEsErt high; 10,9949,1929, 1 0 v. 9"1,tc); 
if Strtoreal(high) <= strtoreal(low) then 
begin 
message(’CHECK YOUR ENTRY. "HIGH" MUST BE GREATER ^" 
“THAN  "LOUW'*)5; 
wait; 
clearmessage 
end 
until  strtoreal(high? > strtoreal(low); 
while lengthtlov? € 10 do 
insert(” ”,lov,15: 
while lengththigh? € 10 do 
insert “,high, 15): 


(* use opens the files most commonly used in the 


sensitivity analysis process. x) 
procedure use(cproblem : str8; method : char); 
begin 


initindex; 
openfile(filel,dr+cproblem+’.dcl’,sizeof(ctrl)); 
openindex(index1l,dr+cproblem+’.icl’,sizeof(ctrl.index),0); 
openfile(file2,dr+tcproblemt’.’+method+’dt’,sizeof(st)); 
openindex(index2,dr+cproblem+’.’+method+’ic’, 
sizeoft(st.Ck),1); 
end; 


(* closefiles closes files opened with the use procedure +) 
procedure  closefiles; 
begin 
closefile(filel): 
closeindex(indexl): 
closefiletfile25: 
closeindexCtindex25, 
end: 


overlay procedure  controlstrategy; 
label 

cancel; 
var 

tloss : real; 

title . stringi601: 


begin 
ans = ” ”, 
while ans €? ”4” do 
begin 


1-1 


controlstrategymenu; 
select( SELECT 1,2,3 or 4 : ev 4 01756 ии, 
if ans = “1” then 


help('B^') 
else 
while ans <> “4” do 
begin 


clearframe; 

select’ SELECT W)eighted, P).e.r.t, R)anking 
Or Qiuit:”*,[°W°,’P,°’Q0”,“R”],nethodbb 

clearselect; > 

if method = ”Q” then goto cancel; 


openfile(filel,dr+cproblem+’ .’+method+’dt’, 
sizeof (st)); 
if not ok then 
begin 
clearframe: 
message(’YOU MUST RUN THE MODEL FIRST’); 
wait; 
goto cancel 
end; 
fillchar(maxNkK,10,0); 
fillchar(maxBCR,10,0); 
case method of 
“vu” 1 title :- 'WEIGHTED METHOD: ’; 
“рин мет ЕТ: P.E.R: T: METHOD 7: 
^R^ $ title := “RANKING METHOD: ”, 
end; {of case} 
closefile(filel); 
usetcproblem,method?, 
inputlimits, 
key := low; 
searchkey (index2,rn,key); 
if ok and (key <= high) then 
with st do 
begin 
repeat 
getrec(file2,rn,st); 
adıuststr (Nk); 
adjuststr(BCR); 
if strtoreal(Nk) > strtoreal(maxNk) then 


begin 
maxNk >= Nk; 
maxNkrn := rn 
end; 
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if strtoreal (BCR) > strtoreal (maxBCR) then 


begin 
naxBCR <= BCR; 
maxBCRrn := rn 
end: 


nextkey(index2,rn,key) 
until not ok or (key > high); 
if ans = 72’ then 
begin 
title := title + ’THE MOST EFFECTIVE SET’: 
rn := maxNkrn 
end; 
if ans = “3” then. 
begin 
title := title + ^THE MOST COST EFFECTIVE SET': 
rn := maxBCRrn 
end; 
clearframe: 
fillchar(st,sizeof(st),0); 
GOotoxy 10,65): write(title); 
getrec(file2,rn,st); 


:.—” 
for i := 1 to maxctrl do 
if setcombtil €? ”” then 
begin 

VE J ` 1 


findkeytindexl,rn,setcombtil), 
getrec(filel,rn,ctrl); Å 
Goweoxny (1053); writet CONTROLE “iasc : ‘, 
ctrl.description» 
end; 
11117529 > 21 then 
begin 
wait; 
clearframe: 
2. 7 
end; 
gotoxy( 3,3+2);write(”’Value of Control Set VK); 
gotoxy( 43, ]+2) ;write( Cost of Control Set :7,Ck); 
gotoxy( 3,)+3);write(”Total Expected Benefit:”,Nhk); 
gotoxy(43,3*3»5;write('Total Expected Cost TEK 
gotoxy(25,3*925;write('Benefit Cost Ratio XxX BO 
GotoxyCizZ, } +7): 
write(’Prior Expected Damage Due to Exposures:”, 
totaloss:8:0): 


we 


133 


adjuststrí(Vk); 


tlosa := totaloss 


dgotoxyt12,276?7 


strtoreal(Vk?: 


write(’Post Expected Damage Due to Exposures:”, 


wait; 
closefiles 
end (of if/with) 
else 
begin 
nessage(” THERE 
wait 
end 
end: (of while) 
cancel: 
end (of while) 
end: 


LS 


NO 
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tloss:8:0); 


ANY SET WITHIN THAT RANGE’); 


overlay procedure graphics; 
label 
cancel; 
var 
ans : 
title : 
currentaction = 
Yimin,Yimax, 
Y2min,Y2max, 
temp1,temp2, 
prevCk,prevBCR, 


har; 
stringt(16) 
string (40) 


va va 


prevTCK : real; 
bestset1, 

bestset2,i : integer; 
flagl,flag2 :boolean; 


(* computegraph computes the values of the plotarrays 


which will be used by the 
draw the graphs. 
overlay procedure 
var 
ки: 
begin 
if flag2 then 
El MaxPlotGlb 
else 
ti :s 24; 
use(cproblem,method) ; 
inputlimits; 
message(’ PLEASE WAIT 
1 O; 
key := low; 
searchkey (index2,rn, key) ; 
kimin ` 39 .99E*+20,;, 
Yimax £ 0.0: 
nin <= 9.99E*20; 
Y2max : O.O; 
if ok and (key <= 
with st do 
begin 
repeat 
IE i < ti 
begin 
getrec(file2,rn,st); 
adjuststr (key); 
ad3uststr(BCR); 
adjuststr.( TCk»); 
tempi : strtoreal (BCR); 
temp2 := strtoreal(TCk); 


computegraph; 


integer; 


POR THE 


high) then 


then 
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makegraph procedure to 


ҹ) 


ЕрераҺАТТОН ОР ТНЕЈОКАРН” 2: 


if strtoreal(key)») 
begin 
if templ > ali,2 
a[i,2] := templ 
if temp2 < bl[i,2 
b[i,2] :-» temp2 
end 
else 
begin 
diga ae 
а(1,11 := 
Bila — 
а(1,21 := tempi; 
Ы(1,21 := temp2 
end; 
if Yimax € tempi 
begin 
Yimax >= tempi 
bestseti i= rn 
end; 
if Yimin > tempi 
Yimin := tempi; 
if Y2min > temp2 
begin 
Y2min := temp2; 
bestset2 := rn 
ends; 
if Y2max < temp2 t 
Y2max := temp2 
end; 


nextkey(index2,rn,key 
until not ok or (i 
ir s ti) and (key < 
begin 

high : key; 

message(’Cannot Graph 


wait 

end 

end (of if/with) 

else 

begin 
message €‘ THERE 
flagl := true; 
wait: 
clearframe 

end 

end: 


IS NO 


ti) or (key 


atı... then 


1 


1 


thən 


then 


strtoreal(key); 
strtoreal(hkey) ; 


then 


. 
> 


then 


then 


hen 


) 
2 high): 
high) and ok then 


All Sets. 


ANY SET WITHIN 
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Cost Range Has Been” 
? Adjusted’ ); 


THAT RANGE’) 


á 


we 


overla 
var 
J 
step 
numt 
begin 
if 
me 
else 
begi 
in 
se 
ao 


y procedure  makegraph; 


> integer; 
s real: 
ext : string(7]; 
i< 2 then 
ssage(’CANNOT MAKE GRAPH WITH LESS THAN 2 SETS”) 


n 
itgraphic; 
tbreakoff; 
tmessageoff: 


setlinestyle(0); 
setforegroundcolor (0); 


( * 


draw the first graph (upper left side) *) 


definewindow(1,0,0,trunc(Xmaxglb/1.5),trunc(Ymaxglb/2)): 


de 


L£ 


be 


en 
el 


fineheader(1,^BENEFIT COST RATIO VS COST FOR “+title): 
flag2 then 

gin 

defjpnewesrldCcl;at1,11/1.02,Y1min/1.1,a(i,11*1.02, 
Yimax*1.1): 

selectwindow(1):; 

selectworld(1); 

setheaderon: 

setbackground(05: 

dravborder: 

drawaxis(9,9,0,0,0,0,0,0, false); 

drawpolygon(a,1,i,4,1,0D 

d 

se 


begin 


defineworld(1,a(1,11,Y1imin/1.1,ali,11,Ylmax*1.2); 
selectwindow(1): 

selectworld(12»5: 

setheaderon; 

setbackground(O); 

drawborder; 

drawhistogram(a,i,true,4): 

drawtextW(aíl,11J,Ylmax*O.O7 + Yimin/1.1,1, 

“Costs below are in Thousands of Dollars (rounded)”): 
fillchar(numtext,sizeof (numtext),O): 


step .- Cali,li-all,1lji>/7 i; 
for 19-1 toi do 
begin 


str(iround(aí[j,11/1000)5:7,numtext); 
adjuststr(numtext); 
drawtextW(a[l,11]*step*(j-1»5,Y1max*O.18-Y1min/1.1,1, 
^ ** copy(numtext,1,1length(numtext?)2)2) 
end 


end; 
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(* draw the second graph at the lower left side 
of the screen. * ) 
definewindow(2,trunc(Xmaxglb/3),trunc(Ymaxglb/2), 
Xmaxglb,Ymaxglb); 
defineheader(2,'TOTAL EXPECTED COST VS COST OF CONTROL’, 
” £ "+ title); 
if flag2 then 
begin 
flag2 := false; 
defineworld(2,b[1,1]/1.02,Y2min/1.02,b[ľ[i,1]=1.02, 
Y2max*1.02); 
selectwindow(2); 
selectvorld(25: 
setheaderon: 
setbackgroundC0); 
drawborder: 
drawaxis(9,9,0,0,0,0,0,0,false): 
drawpolygon(b,1,1,4,1,0) 
end 
else 
begin 
defineworld(2,b([1,1J],Y2min/1.1,bti,1J],Y2max*1.22); 
selectwindow(2); 
selectworld(22)5; 
setheaderon; 
setbackground(QO); 
drawborder; 
drawhistogram(b,i,true,4); 
drawtextWib[1,11,Y2max*O.07 + Y2min/1.1,1, 
^Costs below are in Thousands of Dollars (rounded)’); 
fillchar(numtext, sizeof (numtext),O); 


step := (bíi,1]-b[1,1]) / i; 
for J := 1 to i do 
begin 


stríround(b[j3,1]/1000) :7,numtext); 
adjuststr(numtext); 
drawtextW(b([1,1]+step*(3-1),Y2max*0.18+Y2min/1.1,1, 
^ ** copytnumtext,1,lengthinumtext?)95) 
end 

end; 

gotoxy (55,1); write('GRAPHS OVER THE RANGE:^')5; 

gotoxy (59,2); write('Low :^*€ low); 

gotoxy (59,3); write(’High:’+ high); 

gotoxy(55,4); write(”Number of Sets :',i:3); 

getrec(file2,bestseti,st); 

adjuststr(st.BCR); 

adjuststr(st.Ck); 

gotoxy(60,8); write (’<<== THE BEST SET *); 

gotoxyt59,9); writer BECK :; cU SE BERI); 

gotoxy(59,10); write(^Cost of set : “,st.Ck); 
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getrec(file2,bestset2,st); 

adjuststr(st.TCk); 

adjuststr(st.Ck); 

getoxylo,ls)-MwriteC’THE BEST SET ==>>°); 
gotoxy (1,20); write('Expected cost: ”,st.TCk), 
gotoxy (1,21); write(^Cost of set: *,st.Ck); 
gotoxy (1,24); write('press any key ...°); 
setforegroundcolor(2); 

read (kbd,ans); 

leavegraphic; 

textmode; 

textcolor(x); 

makeframe; 

problemfield(cproblem); 
action(currentaction); 


putdate 
end; 
closefiles; 
end; 
begin ( of graphics) 
ans 1= ” 73 
flagi :s false; 
£1ag2 :s false; 


while ans <> “4” do 
begin 
graphicsmenu; 
cekot NA DELEC I Z ит d: 1t1*^..'d'],ans»; 
if ans = “1” then 
help('G^»); 


while (ans <> ^1*) and (ans «^» ”4”) do 
begin 
select(’SELECT W)eighted, P).e.r.t, R)anking 
or lt P Ws PA QU R], method): 
if method = *Q”* then goto cancel; 
openfile(filel,dr+cproblem+’.’+method+’dt’, 
Sizeof(st)); 


if not ok then 
begin 
clearframe; 
message (“YOU MUST RUN THE MODEL FIRST’); 
walt: 
goto Cancel 
end; 
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if ok then 
begin 
if usedrecs(filel) < 2 then 
begin 
clearframe; 
message(’CANNOT MAKE GRAPH WITH LESS THAN 2 


SETS Ð: 
closefile(filel); 
wait; 
closefile(filel); 
goto cancel 
end; 
closefile(filel); 
case method of 
^^ : title := 'WEIGHTED METHOD “; 
^p^ + title = P.E Re INE TAO Di = 
“R’ : title := "RANKING METHOD ”: 
end (of case) 
end: (of if ok) 
case ans of 
^2' : begin 
currentaction := 'GRAPHICS / CURVE'; 
action(currentaction); 
flag2 :- true; 
computegraph; 
if not flagi then 
makegraph; 
flagl := false; 
ans := “2” 
end: 
^3^ : begin 
currentaction := ^ GRAPHICS Z HISTOGRAM’: 


action(currentaction»; 
computegraph; 
if not flagl then 


makegraph; 
flagl := false; 
ans i= “3” 


end 
end (oí case) 


end; (of while) 
cancel: 
end (of while) 
end; 
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overlay procedure printíiles; 
var 
ans : char; 


overlay procedure  controleffectable; 


var 
header : string(801, 
idx : Stringi21; 
i : integer; 
begin 


action(’PRINTER / CONTROL TABLE’); 
fillchar(ce, sizeof (ce) ,0O):; 
fillchar (header,sizeof (header) ,0O):;3 
writeln(lst,212,' D EC IS I ON SU 
CS 
wrrtelnolstoconststr('-^,47)5»:63)5; 
writeln(lst); 
writeln(lst,’COST EFFECTIVENESS ANALYSIS’ :54): 
writeln(lst,’FOR’ :41): 
writeln(lst,’CONTROL S SECURITY OF COMPUTER as 

57 .:E15”:€2 7?” 
writeln(lst); 
writeln(lst); 
writeln(lst,’CONTROL ACTIVITIES FOR WORK ’+cproblem); 


secufiletfilel,drecproblem-”” .dcl’, sizeof tctrl)): 
openindex(Cindexl,dr+cproblem+’.icl’, 
Sizeof(ctrl.index) ,O); 


ctrlno := usedrecs(filel); 
clearkey(index1); 

header := “EXPOSURE | 2. 
rz Ö: 

repeat 


nextkey(index1,rn,idx); 

if ok then 

begin 
+ Ls 
getreeXfilel,rn,ctrlb: 
writeln(lst,ctrl.index,^ "ctr description»; 


celi) := ctrl.effect; 

celil ="etrl.cost: 

header := header + ctrl.index +’ i E 
end 


until not ok; 

closefile(filel): 

closeindextindex1): 

writeln(l1st): 

writeln(lst):; 
writeln(lst,^EXPOSURES FOR WORK ’+cproblem); 
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openfile(filel,dr+cproblem+’.dxp’,sizeof(expsr)); 
openindex(index1,dr+cproblem+t’.ixp’, 
sizeof (expsr.index),0O); 
clearkey(index1); 
repeat 
nextkey(indexl,rn,idx); 
if ok then 
begin 
getrec(filel,rn,expsr); 
writeln(lst,expsr.index, ’” ”,expsr.description) 
end 
until not ok: 
closefile(filel); 
closeindex(index12); 
writeln(lst); 
writeln(lst»; 
writeln(lst); 
writeln(lst,conststr(’=’%,80)); 
writeln(lst,’ EFFECTIVENESS OF CONTROL acid ON EXPOSURE “, 
(Ð 3:70) 
writeln(lst,header):; 
writeln(lst,conststr('/-^,80)5)5; 
for i := 1 to expno do 
begin 
write(lst,i:6,” oe 
for jj «sz .1*to cer imo 10 
write(Clist;cetıri I: 
writeln(Cist); 
end; 
writeln(lst)?: 
write(lst,”COST ali):?); 
for i == 1 to ctrino do 
write(1st strtoreaslícclil):6:0,” “07 
writeln(lst); 
writeln(Ist,conststr( €“ ,80)) 
end: 


Overlay procedure exposuretable; 

begin 
action(’PRINTER / EXPOSURE TABLE”): 
writeln(lst,#12, DECISION SUPPORT SYSTEM” ә Ји: 
writeln(lst,conststr('-^,47):63); 
writeln(lst): 
writeln(lst,'"COST EFFECTIVENESS  ANALYSIS':54); 
writein(lst,’FOR’ :41):; 
writeln(lst,"CONTROL 6 SECURITY OF COMPUTER 

SYSTEMS: 162); 

writeln(l1st»;:; 
writelnt(lst); 
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57 cin 16560, EXPECTED LOSSES CAUSED BY EXPOSURES FOR WORK’ 
5: “cpre6lem:e66)?: 
5--ə: 
writeln(lst); 
writelnílst); 
writeln(lst); 
openfile(filel,dr+cproblem+’.dxp’,sizeof(expsr)); 
openindex(index1l,dr+cproblem+t’.ixp’, 
sizeof (expsr.index),0O); 
writeln(lst,’ THE WEIGHTED METHOD” :48); 
writeln(lst,conststr(’=’,80)); 
writeln(lst,’” POTENTIAL ERRORS’ :37,’AMOUNT OF’ :28, 
"PROB/ TY OF F15): 
writeln(lst,”DAMAGE” :54,” OCCURENCE' :15); 
writeln(lst,conststr(”-”,80)); 
clearkey(index1); 
.- 17: 
with expsr do 
repeat. 
nextkey{(indexl,rn,idx); 
if ok then 
begin 
15:11:51: 
getrec(filel,rn,expsr); 
k :s 50 - length(description); 
writeln{(lst,index,” * ,description,conststr(” STR 
damage:11,probability:12) 
end 
until not Ok; 
writeln(lst,conststr(’=’,80)):;3 
"EM -" y) - 1 * 2: 
Et 1 » 96 then 
write(lst,#12); 
writeln(lst): 
writeln(lst): 
writeln(llst); 
wuitelnclst, THE P.E.K.T METHOD’ $48); 
writeln(lst,conststr(’=’,80)): 
writeln(l1st,” POTENTIAL ERRORS’ 337,’ AMOUNT OF DAMAGE’ 337): 
writeln(lst,’smallest’:61,’m.likely’:10,’largest’:9); 
əritelnilst,conststr€(”-”,80)5: 
clearkey(indexl):; 
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with expsr do 
repeat 
hextkey (indexl,rn,idx); 
if ok then 
begin 
getrec(filel,rn,expsr); 
k := SO - length(description); 
writeln(lst,index,^ ” description, conststr 4 
smallest:8,mostlikely:10,largest:9) 
end 
until not ok; 
writeln(lst,conststr(’=’,80)); 
writelnt(lst»; 
writeln(lst); 
writeln(lst); 
writeln(l1st,'THE RANKING METHOD” :48); 
writeln(lst,conststr('z^,80)); 
writeln(lst,*POTENTIAL ERRORS':37, 
^ESTIMATION OF PROBABILITY':42): 
writeln(lst,^OF OCCURENCE AND DAMAGE” :78): 
writeln(lst,’Rank P’:65,’Rank Q’:11): 
writeln(lst,econststr( - 2011: 
clearkey Cindexl1); 
with expsr do 
repeat 
nextkey (indexl,rn,idx); 
if ok then 


begin 
getrec(filel,rn,expsr); 
k := 50 - length(description); 
writeln(lst,index,” ”,description,conststr(” s. - 
rankP:11,rankQ:11) 
end 


until not ok; 
writeln(lst,conststr(^s^,80)2): 
closefile(filel): 
closeindex(indexl) 

ends; 
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overlay procedure  printsetfile; 


label 
cancel; 
var 
method : Char: 
i,J,K,rn : integer; 
mthd orrimgLi7/i; 
header : string [80]; 
begin 


aetion C PRINTER / SET FILE”); 

fillcharcmthd,sis:seoícmthd),O2; 

fillchartheader,sizeof(header),0): 

fillchar(comb,sizeof(comb),0): 

select(’SELECT Weighted, P).e.r.t or Ranking 
Caw, Poo Ra) method) > 


case method of 
^W^ : begin 


mthd := 'WEIGHTED METHOD: ^": 
comb :z wcombindex 
end; 
^P^ 1 begin 
Atha := P. .E.R.T. METHOD: “; 
comb := pcombindex 
end; 
^R^ : begin 
mthd := “RANKING METHOD: ^"; 
comb := rcombindex 
end 


end; (of case) 
openfile(filel,dr+cproblem+’.’+method+’dt’,sizeof(stò)); 
if not ok then 
begin 

message( ‘THERE IS NO FILE FOR THE ’+mthd); 

goto cancel 
end 
else 

closefile(filel); 
write(lst,#12); 
writeln(lst); 
writelnt(lst»; 
writeln(list, DE C I S.I O N ORT 
E Ms 


5 


S UPP 

Er T S TD 6209: 

writeln(lst,conststr(^-^,47)2:63)5: 

writelnt(lst); 

writeln(lst,”COST EFFECTIVENESS ANALYSIS’ :54); 

writeln(lst,’FOR’ :41):; 

writeln(lst,^CONTROL € SECURITY OF COMPUTER 
2:1515: 62): 

writeln(lst): 
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writeln(lst); 
writeln(lst,mthd+' CONTROL SETS FOR WORK ’+cproblem:62) ; 
writeln(lst); 
writeln(llst); 
writeln(lst,’CONTROL ACTIVITIES USED BY THE CONTROL 
SETS: TE 

openfile(filel,dr+cproblem+’.dcl’,sizeof(ctrl)); 
openindexC(index1,dr+cproblem+‘’.icl’,sizeof(ctrl.index),0); 
clearkeyCindexl); 
ı 1 14; 
for i ;= 1 to maxerri do 
if comblil €? ”” then 
begin 

findkey(indexl,rn,combíil12); 

if ok then 


begin 
getrec(filel,rn,ctrl); 
writeln(lst,ctrl.index,': * ,ctrl.descriptiren = 
32401: 2 

end 


end; (of for/if) 

closefile(filel); 

closeindextindex19), 

writeln(lst); 

writeln(lst»; 

header i= ” CONTROL ACTIVITIES — 

$ VALUE e COST “€” EXP: COST T e BCR E 

writeln(lst,header); 

writeln(IlIst,conststr o) 

openfile(filel,dr+cproblem+’.’+method+’dt’,sizeof(st)); 

openindex(indexl,dr+cproblem+’.‘’+method+’ic’, 
sizeof(tst.Ck?,1): 

clearkeyCindexl); 


1506 
K 6 17 

vith st do 
repeat 


nextkey(indexl,rn,idx); 
if ok then 


begin 
de = ee 
if J > 56 then 
begin 
b com 
k i= k + 1; 


write(lst,#12): 

write(lst,mthd+’CONTROL SETS FOR WORK ‘+ 
cproblem:50); 

write(lst,” page “:24,Wk6:2)2; 

writeln(lst»; 
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WritelnfLSCt); 

writeln(lst); 
writeln(lst,header?); 
writeln(lst,conststr(?7-7,80)) 


end; 
getrec(filel,rn,st); 
for i := 1 to maxctri do 


if setcombfi] <> “” then 
write(lst,setcomb[i]+”,7) 
else 
write(lst,” ye 
755:5c 16: vk:10,60k:10,TCk:10,BCR:8): 
writeln(lst) 
end 
until not ok; 
writeln(lst); 
closefiletfilel5, 
closeindextindex15: 
cancel: 
end; 


begin {of printfiles} 


ans := ^ 73 
while ans <> “5” do 
begin 


printmenu; 
сиз SELECT IZ oa ai or 59 :1*,[^1^*'..'9"1,8ns»; 
Et (ans <> “1”) and (ans <> 75”) then 
begin 
| clearfrane; 
message(’TURN YOUR PRINTER ON.’); 
wait 
end; 
case ans o£ 
EI Relpt P): 
“2” : exposuretable; 
“3” : controleffectable; 
^d^ : printsetfile; 
end (of case) 
end: (of while) 
end; 
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BEGIN (OF SENSITIVITYANALYSIS) 
fillchar(key,sizeof(key?,0); 
fillchar(idx,sizeof(idx),O0); 
ans = * “; 
while ans <> “5” do 
begin i 

Sensanalymenu; 
select (* SELECT 1,2,9 4 


case ans Of 
"”1” 22 help 9» 
^2^ : controlstrategy; 
“5 . Graphics: 
“a” : printfiles; 

end (o£ case) 


end; (of while) 
END: 
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Or 


5 


7. [12.5 amım 


procedure helpích : char); 
151-1 


var 
£1 Text; 
line : string[80]; 
177 : integer; 
begin . 


assign(fl,” HELP” +ch+”.TXT'); 
reset(fl): 
if IOresult = O then 
begin 
clracr; 
= Os 
while not eo£ (£1) do 
beain 
readln(fl,line); 
writeln(line); 
12 - JI re 
IT i = 22 then 
begin 
wait; 
177c 0: 
elrser 
end; 
if eof(fl) then 
wait 
end; 
elrscr; 
makeframe; 
putdate; 
problemfield(cproblem) 
end 
end: 
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10. 
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